Bishop Fox
Pinned repositories
Repositories
-
badPods
A collection of manifests that will create pods with elevated privileges.
-
-
zigdiggity
A ZigBee hacking toolkit by Bishop Fox
-
cyberdic
An auxiliary spellcheck dictionary that corresponds with the Bishop Fox Cybersecurity Style Guide
-
rmiscout
RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
-
GitGot
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
-
h2csmuggler
HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
-
smogcloud
Find cloud assets that no one wants exposed
🔎 ☁️ -
bfdecrypt
Utility to decrypt App Store apps on jailbroken iOS 11.x
-
GadgetProbe
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
-
IDontSpeakSSL-deprecated Archived
Simple tool based on sslyze to scan large scope and provide SSL/TLS vulnerabilities
-
ca-clone
Scripts to clone CA certificates for use in HTTPS client attacks.
-
dufflebag
Search exposed EBS volumes for secrets
-
rickmote
The Rickmote Controller: Hijack TVs using Google Chromecast
-
eyeballer
Convolutional neural network for analyzing pentest screenshots
-
pwn-pulse
Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
-
bfinject
Dylib injection for iOS 11.0 - 11.1.2 with LiberiOS and Electra jailbreaks
-
aws_seeker
Forked from hachisanju/aws_seeker -
.github
Bishop Fox Engineering
-
-
s3-odradek
Forked from hachisanju/s3-odradekLittle tool to suss out S3 permissions as visible to the public.
-
spoofcheck
Simple script that checks a domain for email protections
-
gowitness
Forked from sensepost/gowitness🔍 gowitness - a golang, web screenshot utility using Chrome Headless -
SpoofcheckSelfTest
Web application that lets you test if your domain is vulnerable to email spoofing
-
deephack
PoC code from DEF CON 25 presentation
-
xsshunter
Forked from mandatoryprogrammer/xsshunterThe XSS Hunter service - a portable version of XSSHunter.com
-
ProxyListReliabilityCheck
Perl script to test the reliability of a list of open web proxies.
-
iSpy
A reverse engineering framework for iOS