idiotboxai

idiotboxai's Stars

• peass-ng/PEASS-ng

  PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

  Language:C#16.5k2261873.1k

• kgretzky/evilginx2

  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

  Language:Go11.3k3168892k

• 0dayCTF/reverse-shell-generator

  Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

  Language:JavaScript3.1k5946661

• six2dez/OneListForAll

  Rockyou for web fuzzing

  Language:Shell2.6k464480

• HolyBugx/HolyTips

  A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

  1.8k764305

• onhexgroup/Conferences

  Conference presentation slides

  1.6k622269

• wireghoul/graudit

  grep rough audit - source code auditing tool

  Language:Shell1.6k3625244

• Viralmaniar/BigBountyRecon

  BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

  Language:C#1.3k389249

• random-robbie/bruteforce-lists

  Some files for bruteforcing certain things.

  1.2k353362

• silverhack/monkey365

  Monkey365 provides a tool for security consultants to easily conduct not only Microsoft 365, but also Azure subscriptions and Microsoft Entra ID security configuration reviews.

  Language:PowerShell862258295

• bobby-lin/study-bug-bounty

  Beginner Guide to Bug Hunting

  71427088

• glebarez/cero

  Scrape domain names from SSL certificates of arbitrary hosts

  Language:Go6279982

• ayadim/Nuclei-bug-hunter

  i will upload more templates here to share with the comunity.

  539102101

• kevin-mizu/domloggerpp

  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.

  Language:JavaScript49492251

• g0ldencybersec/gungnir

  CT Log Scanner

  Language:Go3028461

• PortSwigger/bypass-bot-detection

  Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection

  Language:Java2552112

• orwagodfather/My-WordLISTs

  1212054

• HernanRodriguez1/SQLi_Sleeps

  Language:Python1152026

• bigb0x/CVE-2024-36991

  POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.

  Language:Python1132221

• panch0r3d/nuclei-templates

  8613332

• Stuub/SquatSquasher

  Discovering Typo Squatting on your domains!

  Language:Python60114

• A2-Security/GitBook-Scraper

  Language:Python430013

• securelayer7/CVE-2024-38856_Scanner

  Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)

  Language:Python401011

• charisma334/how-to-pwn-xyz

  Repo containing walkthroughs to possibly pwn Admin Panels and Exposed Consoles

  17100

• sys0wn/css-scrollbar-attack

  PoC for leaking text nodes via CSS injection

  Language:JavaScript15003

• GiJ03/API_KeyHacks

  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

  13103

• nyxgeek/bad_guest

  Language:PowerShell11213

• Cappricio-Securities/CVE-2024-36991

  Path traversal vulnerability in Splunk Enterprise on Windows versions below 9.2.2, 9.1.5, and 9.0.10 that allows reading sensitive files.

  Language:Python2000

• ahboon/CVE-2024-37032-scanner

  CVE-2024-37032 scanner

  Language:Python1100

• andria-dev/DolibabyPhp

  An authenticated RCE exploit for Dolibarr ERP/CRM CVE-2023-30253.

  Language:Python120