Pinned Repositories
.NET-Deobfuscator
Lists of .NET Deobfuscator and Unpacker (Open Source)
0x94TR
0x94TR Scanner Burp Suite Extension | Python 2x
230-OOB
An Out-of-Band XXE server for retrieving file contents over FTP.
31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
awesome-grep
List of GREP modifications and alternatives for a variety of purposes
BChecks-Collection
BChecks collection for Burp Suite Professional
SWFPFinder
SWFPFinder - SWF Potential Parameters Finder
websocket-harness
Use normal web pentest tools to hack Websockets
affilares's Repositories
affilares/Android-App-Link-Verification-Tester
Checks if an Android application has successfully completed the "App Link Verification" process for Android App Links.
affilares/API-SecurityEmpire
API Security Projecto aims to present unique attack & defense methods in API Security field
affilares/bugbounty
Bugbounty Resources
affilares/burp-copy-regex-matches
Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
affilares/container-security-checklist
Checklist for container security - devsecops practices
affilares/crimson
Reconstruction and automation of the Web Application Security Testing methodology.
affilares/ctf-katana
This repository aims to hold suggestions (and hopefully/eventually code) for CTF challenges. The "project" is nicknamed Katana.
affilares/DataExtractor
A simple Burp Suite extension to extract datas from source code.
affilares/dontgo403
Tool to bypass 40X response codes.
affilares/drozscan
Droz_scan is a automated script, that runs all the queries of drozer in a single run
affilares/dump-scripts
Downloads all scripts on an external page to a local directory, with support for automatic deobfuscation/prettifying.
affilares/Firmware-Guide
Firmware Guide
affilares/frida-ios-intercept-api
A tool to help you intercept encrypted APIs in iOS apps
affilares/fsmon
monitor filesystem on iOS / OS X / Android / FirefoxOS / Linux
affilares/Golden-Guide-for-Pentesting
Golden Guide
affilares/hakfindinternaldomains
Feed it a list of subdomains, it will resolve them and tell you which ones are internal
affilares/mirrorscript-v2
Kali Mirrorscript-v2 by IceM4nn automatically select the best kali mirror server and apply the configuration
affilares/NoSQL-Attack-Suite
This suite consists of two different scripts, made to automate attacks against NoSQL databases.
affilares/nosqli
NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
affilares/NotSoCereal-Lab
NotSoCereal: A Deserialization exploit playground
affilares/nuclei-burp-plugin
Nuclei plugin for BurpSuite
affilares/OAUTHScan
Burp Suite Extension useful to verify OAUTHv2 and OpenID security
affilares/PendingIntentScan
affilares/Pentesting_cheatsheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
affilares/personal-security-checklist
🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021
affilares/reapoc
OpenSource Poc && Vulnerable-Target Storage Box.
affilares/SSLBypass
iOS SSL Pinning Bypass (iOS 8 - 14)
affilares/TProxer
A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
affilares/VunHunterTips
漏洞挖掘技巧及其一些工具集成
affilares/Web-Cache-Vulnerability-Scanner
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).