th3-alch3m1st's starred repositories
CVE-2021-28482-Exchange-POC
POC from TestANull for CVE-2021-28482 on Exchange Server
PrototypePollution-Lab
Prototype Pollution Lab
bruteforce-http-auth
Bruteforce HTTP Authentication
GCP-IAM-Privilege-Escalation
A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
jsubfinder
jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
ysoserial-modified
That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
leaky-paths
A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
Android_Security
This repository is a suplimentary material for Android Training's done by Anant Shrivastava from 2012-2017
ShodanTools
Collection of scripts & fingerprinting tricks for Shodan.io
TrustTrees
A Tool for DNS Delegation Trust Graphing
KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..