In this section, we'll explain what server-side request forgery is, describe some common examples, and explain how to find and…
When looking for vulnerabilities of interest, it’s always a good option to look for vulnerabilities used at pwn2own. Indeed, these…
A versatile tool designed to enhance both the UI and functionality of Burp Suite, streamlining your cybersecurity testing experience. Compatible…
Antivirus REDucer for Antivirus REDteaming. Avred tries to provide as much context and information about each match as possible when…
Meet Supernova, the new and improved shellcode encryption tool made for today's ethical hackers. Supernova is written in Golang and…
EDRSandblast-GodFault is an advanced EDR bypass tool aimed at security researchers and organizations. Its purpose is to evaluate the effectiveness…
NucleiFuzzer is an automation tool that combines and enhances web application security testing. It uses ParamSpider to identify potential entry points and Nuclei's templates to…
SysReptor is a fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike. You…
PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit. If you are a chrome user you…
Description Welcome to the AD Pentesting Toolkit! This repository contains a collection of PowerShell scripts and commands that can be…