Pinned Loading

1. bypass_forbidden bypass_forbidden Public

   A CLI that tries to bypass 403 forbidden by using different http methods, headers, paths or brute forcing XFF. Useful for pentests/security reviews.

   Rust 7

2. digger digger Public

   Identifies bucket/container misconfigurations. AWS S3, GCS, Azure storage. Useful when doing pentests/security reviews.

   Rust 2

3. forger forger Public

   A CLI to make it easier to work with JWTs when doing pentests/security reviews

   Rust 6

4. dns_exfil dns_exfil Public

   Service to be used for DNS exfiltration with the option of posting queries to Discord/Slack. Useful when doing pentests/security reviews.

   Rust

5. lookup lookup Public

   Simple tool for reverse DNS & DNS lookups

   Rust 1

6. bankid-session-fixation-template bankid-session-fixation-template Public

   A template for automating bankid session fixation outlined in https://mastersplinter.work/research/bankid/

   Go