:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens - ticarpi/jwt_tool

Trying to make automated recon for bug bounties. Contribute to phspade/Automated-Scanner development by creating an account on GitHub.

this contain the burp pack. Contribute to SilverPoision/a-full-list-of-wordlists development by creating an account on GitHub.

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command - Mr-Un1k0d3r/SCShell

Red Team Operations with Cobalt Strike is a course on Adversary Simulations and Red Team Operations. Learn how to stand up sophisticated command and control ...

Local File Inclusion Burp-Suite Intruder Payload Generator Plugin - luke-goddard/LFI-Fuzzer-Burp-Suite

CScriptShell, a Powershell Host running within cscript.exe - GitHub - Cn33liz/CScriptShell: CScriptShell, a Powershell Host running within cscript.exe

This is the 13th blog out of a series of blogs I will be publishing on retired HTB machines in preparation for the OSCP. The full list of…

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT - xsscx/Commodity-Injection-Signatures

Yes it’s still easy to get Domain Admin “before lunch” as it was when I first started.

Code-Audit-Challenges. Contribute to CHYbeta/Code-Audit-Challenges development by creating an account on GitHub.

Apache POI is a popular Java library for working with Microsoft documents. When I was recently looking into the library, I noticed a little vulnerability which then became CVE-2019–12415.

onliner to quickly test some urls with curl: cat plainurls.txt | while read u;do echo "$(printf '%-100s' "$u")-> $((curl -I -s -m 5 -k "$u"||echo KO)|head -n 1 -)"; done https://t.co/Rou0D3kU60

Hey everybody! I just updated my Snek module to support PowerShell 6 and 7! It's using the .NET Standard Python for .NET binaries so you should...