reewardius

followers

following

stars

Ukraine

TG: @reewardius

DIMOOON's starred repositories

CVE-2024-22120-RCE

Time Based SQL Injection in Zabbix Server Audit Log --> RCE

Language:Python8500

nowafpls

Burp Plugin to Bypass WAFs through the insertion of Junk Data

Language:Python14700

EasyEASM

Zero-dollar attack surface management tool

Language:GoMIT21700

ShodanX

ShodanX is a tool to gather information of targets using shodan dorks⚡.

Language:PythonMIT11500

burpscript

Language:KotlinMPL-2.05300

xnldorker

Gather results of dorks across a number of search engines

Language:Python5100

swaks

Swaks - Swiss Army Knife for SMTP

Language:PerlGPL-2.082100

durl

Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names

Language:Go2800

creepyCrawler

OSINT tool to crawl a site and extract useful recon info.

Language:Python13100

Awesome-InfoSec-TG-channels

For the most part, these are RUS tg channels and assembled manually in channels.txt. The list of subscribers is updated every 12 hours.

Language:Python2500

check_bitrix

Check bitrix vulnerabilities

Language:Python3200

gojwtcrack

Fast JSON Web Token (JWT) cracker written in Go

Language:GoMIT6100

NTLMAnonProxy

Language:Go700

Leaked-Credentials

how to look for Leaked Credentials !

exploit_laravel_cve-2018-15133

Exploit for Laravel Remote Code Execution with API_KEY (CVE-2018-15133)

Language:Python4600

gourlex

Gourlex is a simple tool that can be used to extract URLs and paths from web pages.

Language:GoMIT16300

epyon

Epyon is a swiss army knife tool for pentesting DevOps ecosystems.

Language:GoBSD-2-Clause5700

CVE-2024-25600-wordpress-Exploit-RCE

(Mirorring)

Language:Python300

BlindSSTIScanner

Burp Suite extension that enhances Burp Active Scan by adding template engine specific SSTI payloads.

Language:Java2000

damplify

DNS amplification PoC

Language:Go2200

toxicache

Go scanner to find web cache poisoning vulnerabilities in a list of URLs

Language:Go9300

semgrep-rules-manager

Manager of third-party sources of Semgrep rules 🗂

Language:PythonGPL-3.06700

semsearch

Semgrep CLI wrapper

Language:Go100

semgrep-rules-android-security

A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.

Language:JavaGPL-3.020700

AzSubEnum

Azure Service Subdomain Enumeration

Language:Python3000

celerystalk

An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.

Language:PythonMIT39400

badPods

A collection of manifests that will create pods with elevated privileges.

Language:ShellMIT55200

acido

Azure Container Instances Distributed Operations (acido CLI) for Red Team Operations through Azure Cloud.

Language:PythonMIT700

TInjA

TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines for eight different programming languages.

Language:GoApache-2.026300

artishock

A tool to investigate Dependency Confusion in Artifactory

Language:JavaApache-2.02300