Pinned Repositories
BurpExtentions
celerystalk
An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.
CloudShovel
A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where we scanned 20k+ public AMIs.
crossdomain-exploitation-framework
Everything you need to exploit overly permissive crossdomain.xml files
Empire
Empire is a pure PowerShell post-exploitation agent.
Nodejs-SSRF-App
Nodejs application intentionally vulnerable to SSRF
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
PyCodeInjection
Automated Python Code Injection Tool
sethsec's Repositories
sethsec/celerystalk
An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.
sethsec/crossdomain-exploitation-framework
Everything you need to exploit overly permissive crossdomain.xml files
sethsec/PyCodeInjection
Automated Python Code Injection Tool
sethsec/Nodejs-SSRF-App
Nodejs application intentionally vulnerable to SSRF
sethsec/Empire
Empire is a pure PowerShell post-exploitation agent.
sethsec/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
sethsec/BurpExtentions
sethsec/cfdb
Common Findings Database
sethsec/Egress-Assess
Egress-Assess is a tool used to test egress data detection capabilities
sethsec/KaliVirtualDropbox
Create a Kali virtual dropbox (ISO) for use during remote Vulnerability Assessments and Penetration tests that auto installs without any user interaction, and calls home to your C2 server using unique shared secrets
sethsec/Photon
Incredibly fast crawler which extracts urls, emails, files, website accounts and much more.
sethsec/CloudShovel
A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where we scanned 20k+ public AMIs.
sethsec/awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
sethsec/environments-test
sethsec/pbnj.github.io
sethsec/Presos
Place to drop slides and other presentation material
sethsec/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
sethsec/RobotsDisallowed
A curated list of the most common and most interesting robots.txt disallowed directories.