ムハンマド
|
89429f9c4f
|
SSTI Payload in Jinja2 - Arbitrary file read
|
2021-01-18 11:48:38 +03:00 |
|
Swissky
|
d4d2ba45c2
|
Merge pull request #323 from lanjelot/protocol-smuggling
Add PortSwigger http-desync reborn article
|
2021-01-16 19:04:16 +01:00 |
|
lanjelot
|
c5d8f3fc4f
|
Add PortSwigger http-desync reborn article
|
2021-01-17 04:23:38 +11:00 |
|
Swissky
|
7b943d46bc
|
Merge pull request #322 from lapolis/patch-1
Added closing bracket in unicode full width bypass
|
2021-01-15 17:42:13 +01:00 |
|
lapolis_aka_blu
|
6f758ba6c0
|
Added closing bracket in unicode full width bypass
Yeah I know it is logic to use it if you really need the closing tag. But having both brackets in your repo makes it quicker to copy paste :D
|
2021-01-15 16:38:51 +00:00 |
|
Swissky
|
01aadf3a44
|
Alternate Data Stream
|
2021-01-13 10:22:59 +01:00 |
|
Swissky
|
836861c86e
|
Merge pull request #320 from lanjelot/cloudsplaining
New cloudsplaining tool to AWS Pentest page
|
2021-01-12 13:42:36 +01:00 |
|
Swissky
|
964f2cde35
|
Merge pull request #319 from lanjelot/insecure-scm-cleanup
Cleaned up Insecure SCM page and added new Yar tool
|
2021-01-12 13:36:38 +01:00 |
|
lanjelot
|
5cfa93f98b
|
Add new cloudsplaining tool to AWS Pentest page
|
2021-01-12 22:59:37 +11:00 |
|
lanjelot
|
4473764c4d
|
Fix ToC
|
2021-01-12 22:45:12 +11:00 |
|
lanjelot
|
8c97cec6d8
|
Clean up Insecure SCM page and add new tool yar
|
2021-01-12 22:39:37 +11:00 |
|
Swissky
|
3a6ac550b8
|
DSRM Admin
|
2021-01-08 23:41:50 +01:00 |
|
Swissky
|
dd80fb899c
|
Merge pull request #315 from timgates42/bugfix_typo_account
docs: fix simple typo, accound -> account
|
2020-12-22 23:53:27 +01:00 |
|
Tim Gates
|
7846225bfd
|
docs: fix simple typo, accound -> account
There is a small typo in Methodology and Resources/Active Directory Attack.md.
Should read `account` rather than `accound`.
|
2020-12-23 09:16:40 +11:00 |
|
Swissky
|
609c38bde5
|
Merge pull request #314 from ahboon/HTTP-Parameter-Pollution
Added Golang param information
|
2020-12-22 20:02:56 +01:00 |
|
Cher Boon
|
70d8db7de4
|
Updated to include modules used for golang
|
2020-12-23 01:30:23 +08:00 |
|
Cher Boon
|
a6727e8305
|
Added Golang information
|
2020-12-23 01:28:32 +08:00 |
|
Swissky
|
0929d5596c
|
Merge pull request #313 from ahboon/HTTP-Parameter-Pollution
Created HTTP Parameter Pollution
|
2020-12-22 11:27:07 +01:00 |
|
Cher Boon
|
20da830ac1
|
Create README.md
|
2020-12-22 17:49:45 +08:00 |
|
Swissky
|
16b207eb0b
|
LAPS Password
|
2020-12-20 21:45:41 +01:00 |
|
Swissky
|
67752de6e9
|
Bronze Bit Attack
|
2020-12-18 22:38:30 +01:00 |
|
Swissky
|
66a0fd1cbe
|
Merge pull request #311 from lanjelot/deser
Add tool gadgetprobe
|
2020-12-18 15:25:26 +01:00 |
|
Swissky
|
1e69ec63a8
|
Merge pull request #312 from lanjelot/ebs
Update Cloud AWS Methodology
|
2020-12-18 15:24:41 +01:00 |
|
Swissky
|
35a86f81d7
|
Merge pull request #310 from lanjelot/smuggler
Add tools kube-hunter and smuggler
|
2020-12-18 15:22:20 +01:00 |
|
lanjelot
|
4dc5777c33
|
Add gadgetprobe tool
|
2020-12-18 23:03:25 +11:00 |
|
lanjelot
|
e0c745cbf4
|
Fix AWS duplicated tool enumerate-iam
|
2020-12-18 22:52:21 +11:00 |
|
lanjelot
|
d2d1a2d913
|
Add tools
|
2020-12-18 22:46:28 +11:00 |
|
lanjelot
|
4b9baf37d3
|
Add dufflebag tool and cleanup
|
2020-12-18 22:45:07 +11:00 |
|
Swissky
|
f7e8f515a5
|
Application Escape and Breakout
|
2020-12-17 08:56:58 +01:00 |
|
Swissky
|
973f091d1b
|
Merge pull request #308 from lanjelot/fix-web-methodology
Fix links and duplicated nmap and massscan examples
|
2020-12-12 19:43:34 +01:00 |
|
Swissky
|
3e50b711b7
|
Merge pull request #307 from lanjelot/fix-typos
Fix typos
|
2020-12-12 19:42:46 +01:00 |
|
lanjelot
|
4c18e29a6b
|
Fix links and duplicated nmap and massscan examples
|
2020-12-13 04:50:59 +11:00 |
|
lanjelot
|
7e3db3a3f4
|
Fix typos
|
2020-12-13 04:34:10 +11:00 |
|
Swissky
|
aab4f3e14b
|
Merge pull request #306 from lanjelot/master
Add reference to panoptic and rip-hg tools
|
2020-12-11 19:04:53 +01:00 |
|
lanjelot
|
c6d0ba29e7
|
Add reference to panoptic and rip-hg tools
|
2020-12-12 04:52:21 +11:00 |
|
Swissky
|
b5a758dada
|
Merge pull request #305 from lanjelot/master
Add missing url
|
2020-12-11 18:39:38 +01:00 |
|
lanjelot
|
aaff374395
|
Add missing url
|
2020-12-12 04:26:31 +11:00 |
|
Swissky
|
e58bfe8310
|
Merge pull request #304 from lanjelot/master
Add tool GitTools
|
2020-12-11 18:25:58 +01:00 |
|
lanjelot
|
4ab874d854
|
Add tool GitTools
|
2020-12-12 04:19:54 +11:00 |
|
Swissky
|
73fdd6e218
|
Mimikatz - Elevate token with LSA protection
|
2020-12-09 23:33:40 +01:00 |
|
Swissky
|
12aab45018
|
Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings
|
2020-12-08 14:31:47 +01:00 |
|
Swissky
|
19a2950b8d
|
AMSI + Trust
|
2020-12-08 14:31:01 +01:00 |
|
Swissky
|
2f83ee56f4
|
Merge pull request #302 from noraj/patch-1
add another example of XXE in XLSX
|
2020-12-08 11:36:26 +01:00 |
|
Alexandre ZANNI
|
7733d4495e
|
add another example of XXE in XLSX
|
2020-12-08 09:50:30 +01:00 |
|
Swissky
|
78cc68674b
|
Merge pull request #296 from brnhrd/patch-1
Fix table of contents
|
2020-12-07 17:21:02 +01:00 |
|
Swissky
|
f48ee0bca5
|
Deepce - Docker Enumeration, Escalation of Privileges and Container Escapes
|
2020-12-06 18:59:43 +01:00 |
|
Swissky
|
27050f6dd8
|
MSSQL Server Cheatsheet
|
2020-12-05 11:37:34 +01:00 |
|
Swissky
|
e9390d1572
|
Merge pull request #297 from u0pattern/u0pattern-patch-1
XXE WAF Bypass Added
|
2020-12-04 10:21:17 +01:00 |
|
ムハンマド
|
eb75a7e304
|
XXE WAF Bypass Added
|
2020-12-04 05:16:37 +03:00 |
|
Swissky
|
e13f152b74
|
AD - Recon
|
2020-12-02 18:43:13 +01:00 |
|