Pinned Repositories
apache-log-parser
burp-auto-gql
A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.
CheckPoint-Firewall-Enum
simple bash script to obtain the firewall's hostname and ICA name
lfimap
Local file inclusion discovery and exploitation tool
manual-gdorks
mitmproxy2swagger
Automagically reverse-engineer REST APIs via capturing traffic
ShadowScan
"ShadowScan captures the essence of stealthiness, slow scanning, and the pursuit of vulnerabilities like low-hanging fruit.
srand2's Repositories
srand2/burp-auto-gql
A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.
srand2/apache-log-parser
srand2/manual-gdorks
srand2/AD_Miner
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
srand2/Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
srand2/aem-hacker
srand2/AspDotNetWrapper-Edited-
This Tool To Test Machine Keys In View State
srand2/burp-awesome-tls
Fixes Burp Suite's poor TLS stack. Bypass WAF, spoof any browser.
srand2/Burp-Suite-Certified-Practitioner-Exam-Study
Burp Suite Certified Practitioner Exam Study
srand2/certsync
Dump NTDS with golden certificates and UnPAC the hash
srand2/CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
srand2/CVE-2024-25600
Unauthenticated Remote Code Execution – Bricks <= 1.9.6
srand2/CVE-Half-Day-Watcher
srand2/directory-payload-list
Directory scans
srand2/domloggerpp
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
srand2/lostools
XSS and other tools
srand2/OpenRedireX
A fuzzer for detecting open redirect vulnerabilities
srand2/OSCP
srand2/ParamSpider
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
srand2/pentest-arsenal
A collection of tools that I use in CTF's or for assessments
srand2/SecurityEngineerQs
srand2/SharpKiller
Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8
srand2/shortnameguesser
A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
srand2/smbclient-ng
smbclient-ng, a fast and user friendly way to interact with SMB shares.
srand2/SQLiDetector
Simple python script that helps you to detect SQL injection "Error based" by sending multiple requests with different payloads and check for 152 regex pattern for different databases.
srand2/SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
srand2/toaster
srand2/Variantanalysis
srand2/Vulnerable-Code-Snippets
A small collection of vulnerable code snippets
srand2/zipslipper
Create tar/zip archives that try to exploit zipslip vulnerability.