loo9o

loo9o's Stars

• blackarrowsec/Handly

  Abuse leaked token handles.

  Language:C#13014

• CrowdStrike/psfalcon

  PowerShell for CrowdStrike's OAuth2 APIs

  Language:PowerShell36067

• Ridter/noPac

  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

  Language:Python782118

• cve-search/CVE-Search-Docker

  Docker Image for CVE-Search

  Language:Shell9435

• W01fh4cker/CVE-2023-46747-RCE

  exploit for f5-big-ip RCE cve-2023-46747

  Language:Python20245

• myh0st/scripts

  信安之路上涉及的一些脚本

  Language:Python21572

• pimps/CVE-2019-2725

  WebLogic Insecure Deserialization - CVE-2019-2725 payload builder & exploit

  Language:Python4612

• initstring/linkedin2username

  OSINT Tool: Generate username lists for companies on LinkedIn

  Language:Python1.2k185

• 3ndG4me/AutoBlue-MS17-010

  This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010

  Language:Python1.2k307

• maaaaz/webscreenshot

  A simple script to screenshot a list of websites

  Language:Python655163

• tenable/poc

  Proof of Concepts

  Language:Python1.2k314

• pwntester/ysoserial.net

  Deserialization payload generator for a variety of .NET formatters

  Language:C#3.2k469

• luigigubello/PayloadsAllThePDFs

  PDF Files for Web Pentesting

  41760

• micro-joan/BlackStone

  Pentesting Reporting Tool

  Language:CSS47076

• BishopFox/cloudfox

  Automating situational awareness for cloud penetration tests.

  Language:Go1.9k183

• initstring/cloud_enum

  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

  Language:Python1.6k244

• Kyuu-Ji/Awesome-Azure-Pentest

  A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

  992185

• Hari-prasaanth/Web-App-Pentest-Checklist

  A OWASP Based Checklist With 500+ Test Cases

  620131

• horizon3ai/CVE-2023-27532

  POC for Veeam Backup and Replication CVE-2023-27532

  Language:C#5811

• itm4n/PPLmedic

  Dump the memory of any PPL with a Userland exploit chain

  Language:C++32734

• zblurx/certsync

  Dump NTDS with golden certificates and UnPAC the hash

  Language:Python61868

• sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY

  Exploit for the CVE-2023-23397

  Language:C#15845

• Trackflaw/CVE-2023-23397

  Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.

  Language:Python12127

• Gerenios/AADInternals

  AADInternals PowerShell module for administering Azure AD and Office 365

  Language:PowerShell1.3k216

• NetSPI/MicroBurst

  A collection of scripts for assessing Microsoft Azure security

  Language:PowerShell2k313

• dafthack/MSOLSpray

  A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.

  Language:PowerShell897167

• OJ/gobuster

  Directory/File, DNS and VHost busting tool written in Go

  Language:Go9.7k1.2k

• incogbyte/quickpress

  Small tool to automate SSRF wordpress and XMLRPC finder

  Language:Go7912

• ShutdownRepo/httpmethods

  HTTP verb tampering & methods enumeration

  Language:Python5110

• stealthsploit/OneRuleToRuleThemStill

  A revamped and updated version of my original OneRuleToRuleThemAll hashcat rule

  34540