Mahmoud Ashraf's repositories
NodeJS-CI-Vulnerability
This is a sample way of How to prevent a command injection Vulnerability in NodeJS Code
FeedNext-2Vulns
I Found 2 Critical Vulnerabilities On FeedNext Open Source
WebVulnExec
This tool created to test and detect web application parameter with the injected vulnerabilities.
0x1-XSS
XSS Exploitaion
Prevent-XSS
How to prevent xss
after-dark-sessions
The collateral (damage) from our late night escapades
all-about-code-review
This is a curated list of resources about code reviews: articles, tools, trainings...
brokencrystals
A Broken Application - Very Vulnerable!
ctf-tools
Some setup scripts for security research tools.
DavidJKTofan
GitHub Profile README.md
DevSecOps
Ultimate DevSecOps library
devx-info
A tool for generating, validating & sharing all your configurations, powered by CUE. Works with Kubernetes, Terraform, Compose, GitHub actions and much more...
DjangoGoat
An intentionally vulnerable django app, to help django developers learn security testing
dlint
Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
DSVW
Damn Small Vulnerable Web
Generic-University
Vulnerable API
go-tools
Staticcheck - The advanced Go linter
habr_app
Mobile app for habr
handouts
materials we hand out
lazyweb
This web application is a demonstration of common server-side application flaws. Each of the vulnerabilities has its own difficulty rating.
NoSQL-JSON-Fix
Sample of JSON NoSQL Injection Fixing
Penetration-Testing-Process-Presentation
This presentation talk about penetration testing process
Vuln-Kernel
Vuln-Kernel Is an automated tool that discovers if your current kernel Linux version is vulnerable or not if yes, It will discover the exploitation method in different Websites/Platforms.
Vulnerable-Flask-App
Intentionally Vulnerable Flask app for use in Demos