Discover @incredibleindishell Open Source projects

Incredible (@incredibleindishell)

incredibleindishell

Stars
1,635
Global Rank 18,891 (Top 0.7 %)
Followers 486
Following 18
Registered almost 10 years ago
Most used languages

PHP
66.7 %

PowerShell
8.3 %

C#
8.3 %

Python
8.3 %

Java
4.2 %

C
4.2 %

SSRF_Vulnerable_Lab

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

CORS-vulnerable-Lab

Sample vulnerable code and its exploit code

sqlite-lab

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

Windows-AD-environment-related

This Repository contains the stuff related to windows Active directory environment exploitation

exploit-code-by-me

Exploit code developed/reproduced by me

CORS_vulnerable_Lab-Without_Database

LDAP-credentials-collector-backdoor-generator

This script generate backdoor code which log username password of an user who have passed HTTP basic auth using LDAP credentials.

PHP-web-shells

when i started web application security testing, i fall in love with web shell development and designed some PHP based web shells. This repository contains all my codes which i released in public.

Local-file-disclosure-SQL-Injection-Lab

This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. If you have any doubt, ping me at https://twitter.com/IndiShell1046 :)

axis_web_shell

This repo contains Axis web shells

good-read

Repository for study material including ebooks, URLs, web pages etc

Mannu-Shell

Mannu Shell is PHP web based shell. This code is meant for performing server side file manipulation and other stuffs. Its backdoor free and user friendly.

Magento-shoplift-python-exploit

Magento shoplift exploit is vulnerability which was discovered by CheckPoint team (http://blog.checkpoint.com/2015/04/20/analyzing-magento-vulnerability/) This python script developed by joren but it was having some bug because of which it was not working properly. If magento version is vulnerable, this script will create admin account with username forme and password forme

ysoserial.net-complied

This repository contains complied exe of ysoserial.net ( ys.exe in directory ysoserial/bin/Debug). This work belongs to @pwntester bhai ji \m/

hash-cracker-ICA

Just an experiment with hash cracking :) few password lists along with some good password cracking rule sets.

Red_Team_Op

Notes for the CRTO exam

Random

This repo contains random stuffs

SQLI_b0x

weblogic-exploits

POC codes related to Oracle WebLogic server

SQLI-Lab_b0x

This repository contains sample SQL Injection vulnerable code which are not straight forward.

XXE_Vulnerable_codes

Sample codes vulnerable to XXE

network-wala-jugaad

sh

b374k php web shell

Panda-sql-injector

API for SQLmap sql injection tool. This tool is developed by my friend incredible.

mannu-shell-jump-tester

These codes are for checking read permission on website document root directory for other user in shared server environment.

insert_SQLI

SQL Injection in Insert query. Application is not throwing SQL server error messages.

writeups

CTF writeups and the like

mysql-brute-forcer

MySQL brute forcer is a PHP based script which perform mysql user account bruteforcing locally. This code is developed by one of my friend and for Educational purpose only.