hax0rg1rl Goto Github PK

gowitness

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

gql-generator

Generate queries from graphql schema

gray_hat_csharp_code

This repository contains full code examples from the book Gray Hat C#

grex

A command-line tool and library for generating regular expressions from user-provided test cases

gwt-penetration-testing-toolset

A set of tools made to assist in penetration testing GWT applications. Additional details about these tools can be found on my OWASP Appsec DC slides available here: http://www.owasp.org/images/7/77/Attacking_Google_Web_Toolkit.ppt

gzipbloat

PHP framework to test User-Agents and intermediary content inspection devices for denial-of-service vulnerabilities with respect to HTTP response decompression.

hack-night

Hack Night is an open weekly training session run by the ISIS lab.

hacking-books

hacking-online-games

A curated list of tutorials/resources for hacking online games.

hacking-with-go

Golang for Security Professionals

hacking_notes

Hacking Notes

hackthebox-ctf-writeups

This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.

hadoop-attack-library

A collection of pentest tools and resources targeting Hadoop environments

haskell-from-python

Example how to call Haskell from Python easily (using ctypes.cdll.LoadLibrary)

heartbleed-poc

Hearbleed exploit to retrieve sensitive information

horuz

Keep an eye of your recon. Save and query your recon data on ElasticSearch.

host-extract

Automatically exported from code.google.com/p/host-extract

hostinjector

Multithreaded Host Header Redirection Scanner

htshells

Self contained htaccess shells and attacks

httpie

Modern command line HTTP client – user-friendly curl alternative with intuitive UI, JSON support, syntax highlighting, wget-like downloads, extensions, etc. Follow https://twitter.com/clihttp for tips and updates.

httppwnly

"Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protection against session hijacking via XSS

httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

iis-shortname-scanner-poc

Automatically exported from code.google.com/p/iis-shortname-scanner-poc

iis_exploit

Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the wild in July or August 2016.

iis_shortname_scanner

an IIS shortname Scanner

ikeforce

inception

A highly configurable tool to check for whatever you like against any number of hosts.

inputscanner

interlace

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

inventus

Inventus is a spider designed to find subdomains of a specific domain by crawling it and any subdomains it discovers.