Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

CSS

Kotlin

Perl

Rust

Jupyter Notebook

OCaml

Zig

Julia

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

C#

Ruby

Kotlin

Scala

Swift

Rust

Shell

Elm

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇲🇹 Malta

🇸🇮 Slovenia

🇸🇲 San Marino

🇬🇲 The Gambia

🇸🇴 Somalia

🇺🇾 Uruguay

🇷🇪 Réunion

🇱🇹 Lithuania

All Countries Compare Countries

AonCyberLabs/PadBuster

Stars
731
Rank 59,849 (Top 2 %)
Language
Perl
License
Apache License 2.0
Created about 13 years ago
Updated over 2 years ago

AonCyberLabs/PadBuster

AonCyberLabs

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Automated script for performing Padding Oracle attacks

PadBuster - Automated script for performing Padding Oracle attacks

Author: Brian Holyfield - Gotham Digital Science ([email protected])

Credits to J.Rizzo and T.Duong for providing proof of concept web exploit
techniques and S.Vaudenay for initial discovery of the attack. Credits also
to James M. Martin ([email protected]) for sharing proof of concept exploit
code for performing various brute force attack techniques.

PadBuster is a Perl script for automating Padding Oracle Attacks. PadBuster  
provides the capability to decrypt arbitrary ciphertext, encrypt arbitrary plaintext, 
and perform automated response analysis to determine whether a request is vulnerable 
to padding oracle attacks.

PadBuster is released under the Apache License, version 2.0 (Apache-2.0)
https://opensource.org/licenses/Apache-2.0

Windows-Exploit-Suggester

This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.

Docker-Secure-Deployment-Guidelines

Deployment checklist for securely deploying Docker

EvilAbigail

Automated Linux evil maid attack

Cexigua

Linux based inter-process code injection without ptrace(2)

xxe-recursive-download

SSH-Weak-DH

D-Modem

A software SIP modem

Nmap-Scripts

Fizzer

Fizzer is an assessment tool for fuzzing FIX messages.

mbedtls-fuzz

BadSamba

This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB share.

MAM-Security-Checklist

Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution

BlazorTrafficProcessor

FastInfoset-Burp-Plugin

Burp plugin to convert fast infoset (FI) to/from the text-based XML document format allowing easy editing

DUALITY

LowDLL