automation - (Page 2)

Oct 1, 2016 automation ssrf

Exploiting CVE-2016-4264 With OXML_XXE

Recently ColdFusion was shown vulnerable [http://legalhackers.com/advisories/Adobe-ColdFusion-11-XXE-Exploit-CVE-2016-4264.txt] to XXE based attacks in OXML documents; CVE-2016-4264 [https://cve.mitre.org/cgi-bin/cvename.

Sep 26, 2016 automation

Finding Hosts Using SSL Certificate Organization And Censys

Finding hosts or domain names associated with a company where the domain name does not include the name of the company can sometimes be difficult.

Mar 27, 2016 automation notes cheatsheet

Cloud Metadata URL List

I landed the SSRF Cloud Metadata technique in a few different scenarios recently. If you haven’t seen the talk BHUSA 2014 - Bringing a

Jan 8, 2015 notes automation

Search all Github Repositories for an Organization

gumbler [https://github.com/BuffaloWill/gumbler] is a script I wrote to search through git commits and introduced in the blog post “Searching Through Git

Oct 5, 2014 notes automation

Searching Through Git Commits

gumbler [https://github.com/BuffaloWill/gumbler] is a script I wrote to search through git commits. Examples from github are discussed below. .gitignore A gitignore