Pinned Repositories
Apepe
📲 Enumerate information from an app based on the APK file
breads
Breaking Active Directory Security with 🍞
Discor
[abandoned] ⚡ Discor is a Node.js tool created to help people which wants to create Discord bots more fast.
juumla
🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and sensitive files
Ozzy
[abandoned] 👁 Ozzy is a dark omnipotent theme for IDA, Git Bash, Sublime, Visual Studio Code etc...
Pinkerton
🕵️ Pinkerton is an JavaScript file crawler and secret finder tool developed in Python
pwnfaces
😛 Primefaces 5.X EL Injection Exploit (CVE-2017-1000486)
Squid
[abandoned] 🦑 Squid is NodeJS CLI tool to scan websites trying to find vulnerabilities.
tomcter
😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with default credentials.
WSOB
😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.
oppsec's Repositories
oppsec/Pinkerton
🕵️ Pinkerton is an JavaScript file crawler and secret finder tool developed in Python
oppsec/juumla
🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and sensitive files
oppsec/Apepe
📲 Enumerate information from an app based on the APK file
oppsec/tomcter
😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with default credentials.
oppsec/breads
Breaking Active Directory Security with 🍞
oppsec/WSOB
😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.
oppsec/pwnfaces
😛 Primefaces 5.X EL Injection Exploit (CVE-2017-1000486)
oppsec/lovefetch
❤ A CLI System Information Tool
oppsec/OAO
⚙️ Operating Account Operators (OAO) is a Golang tool to interact with the LDAP protocol to manage account groups, roles, ACLs/ACEs, etc...
oppsec/zaber
🕵️ Yet another CVE-2019-9670 exploit, but in Golang.
oppsec/minebot
🤖 Charles is a minecraft bot made with mineflayer to execute simple commands
oppsec/aglpi
🖥️ against Gestionnaire Libre de Parc Informatique (GLPI)
oppsec/blobber
🔵 Blobber is a tool focused on enumerating files stored in an Azure Blob Storage Service with anonymous access enabled.
oppsec/gitter-rust
Learning Rust - Project (1)
oppsec/h2csmuggler
HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
oppsec/AtomPePacker
A Highly capable Pe Packer
oppsec/binaries
oppsec/ceh
oppsec/charles-templates
oppsec/CVE_2023_41320
POC for cve 2023 41320 GLPI
oppsec/ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
oppsec/glpi
GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing.
oppsec/Havoc
The Havoc Framework
oppsec/iHateWhales
a deepce-based script that will return useful information about the container for you to escape.
oppsec/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
oppsec/oppsec
oppsec/oppsec.github.io
My personal blog to share some resources with the world
oppsec/teler
Real-time HTTP Intrusion Detection
oppsec/webpack-exploder
Unpack the source code of React and other Webpacked apps!
oppsec/Windows_LPE_AFD_CVE-2023-21768
LPE exploit for CVE-2023-21768