Mahmoud Ashraf's repositories
brokencrystals
A Broken Application - Very Vulnerable!
devx-info
A tool for generating, validating & sharing all your configurations, powered by CUE. Works with Kubernetes, Terraform, Compose, GitHub actions and much more...
DjangoGoat
An intentionally vulnerable django app, to help django developers learn security testing
lazyweb
This web application is a demonstration of common server-side application flaws. Each of the vulnerabilities has its own difficulty rating.
DSVW
Damn Small Vulnerable Web
go-tools
Staticcheck - The advanced Go linter
Vulnerable-Flask-App
Intentionally Vulnerable Flask app for use in Demos
DevSecOps
Ultimate DevSecOps library
Penetration-Testing-Process-Presentation
This presentation talk about penetration testing process
LinuxPass
Linux Cracking Hashing Passwords
WebVulnExec
This tool created to test and detect web application parameter with the injected vulnerabilities.
handouts
materials we hand out
Generic-University
Vulnerable API
after-dark-sessions
The collateral (damage) from our late night escapades
habr_app
Mobile app for habr
Prevent-XSS
How to prevent xss
all-about-code-review
This is a curated list of resources about code reviews: articles, tools, trainings...
0x1-XSS
XSS Exploitaion
FeedNext-2Vulns
I Found 2 Critical Vulnerabilities On FeedNext Open Source
NoSQL-JSON-Fix
Sample of JSON NoSQL Injection Fixing
Vuln-Kernel
Vuln-Kernel Is an automated tool that discovers if your current kernel Linux version is vulnerable or not if yes, It will discover the exploitation method in different Websites/Platforms.
NodeJS-CI-Vulnerability
This is a sample way of How to prevent a command injection Vulnerability in NodeJS Code
ctf-tools
Some setup scripts for security research tools.
DavidJKTofan
GitHub Profile README.md
dlint
Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.