Mehtab Zafar
Mehtab Zafar
I am bit confused about `how takeovers works` so If a website named `sub.target.com` is pointing toward `thisisrandom.surge.sh` then the way to takeover would be to register the `thisisrandom.surge.sh` domain,...
Basically a hunt mode would be that the binary searches for all the SUIDs in a Linux system and then checks each of them on the gtfobins and shows the...
There are multiple data files that stores all the info. It would be nice to make single file for all the organizations(`organization.json`) and another file for all the projects(`projects.json`). Schema...
It would be nice to have a feature that could help in searching for the exploit-db. There is already a tool named [`searchsploit`](https://github.com/offensive-security/exploitdb/blob/master/searchsploit) to search through that but it have...
It would be nice if we can perform LFI testing without having to give a shell back. Just to shell if any parameter is vulnerable or not
There should be an option to test for directory traversal while taking payload from a file.
The Bug reporting Issue template should be updated to tell whether the cowrie was working in proxy mode or Normal Shell mode. The change that would be needed is ```...
As suggested [here](https://github.com/TypeError/domained/issues/37#issuecomment-467897800). We should look into this. Edit: Eyewitness doesn't use python3 so that is one other reason to consider using some other tool.
We are using subbrute as one of the enumeration tools but seems like it's broken which causes issues like #9, #38. Also, it looks like that subbrute is no longer...
Can you please give some example on how to send the data back to server fromv client.