Steiner254's Projects
A collection of PDF/books about the modern web application security and bug bounty.
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
The canAccess function is designed to determine whether a user has access based on their subscription status.
Planning To Take Certified Ethical Hacker (CEH)? Here are github repo with 125 questions and answers to help you prep for the test
The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
Command_Injection-Payloads
Carriage Return Line Feed Vulnerability Injection Payloads
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
CVE-2023-24488.rb The provided script is a Ruby script used to check and detect the CVE-2023-24488 security vulnerability in Citrix Gateway and Citrix ADC.
WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) <= 7.6.4 - Authentication Bypass
Database-Dumps-Fuzzing
A Burp Suite extension to extract datas from source code while browsing.
Good Wordlist For Sql Injection Fuzzing
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password š”ļø
Web path scanner
Discovery-GraphQL-Endpoint-Fuzzing
Disearch-Fuzzing
dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!
A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
Pass you eJPT Study Guide, here you have all tools and content you need!
eLearnSecurity Junior Penetration Tester Certificate (eJPT) PTS Notes
~ Bash Script to bypass Error 403
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent