SimonGurney
SimonGurney
I have a use case where I want to provide a key to a secret, but this secret is also used by the application for internal cert/key storage and is...
Running ACLight suggests "Exchange Recipient Administrators" has generic_all permissions over "Organization Admins" but it does not. Equally I don't think "Organization Admins" provides a route to domain admin. Reviewing the...
The output per detection should include domain records i.e. CNAME, A, AAAA, NS. This should also be stored in the csv/json output
Currently we fetch all domains and then start testing them against signatures. To receive a larger domain list on stdin, we should instead start processing domains as they are yielded...
Currently an attack consists of random payload selection into known injection points and it would be better if we could inject more elaborate stories as attack sequences.