Areed Ahmed A's repositories
Java-Deserializer
This tool is responsible to perform java deserialization attacks on server end points
api-backend
REST API backend for Reconmap
api_paths
A list of REST API URL paths for use in blackbox API end-point discovery
awesome-cve-poc
✍️ A curated list of CVE PoCs.
bruteforce-lists
Some files for bruteforcing certain things.
endgame
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈
firebase
Exploiting misconfigured firebase databases
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
git-dumper
A tool to dump a git repository from a website
GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
gitleaks
Audit git repos for secrets 🔑
hackerone-reports
Top disclosed reports from HackerOne
InformationSecurity
A place where I can create, collect and share tooling, resources and knowledge about information security.
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
livestream-api-samples
Public API Sample
Malware-Exhibit
🚀🚀 This is a 🎇🔥 REAL WORLD🔥 🎇 Malware Collection I have created or Compiled/analysed🔥 to understand more about Malware threats😈, analysis and mitigation🧐.
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Secured-Chat-System
This project was built to make a secure chat system using security protocols.
smuggler
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
svg-cheatsheet
A cheatsheet for exploiting server-side SVG processors.
takeover
Sub-Domain TakeOver Vulnerability Scanner
The-Box-purchase-app-
A freelancing project -> Inventory app
User-Agent-Bruter
Brute force a web target with different user-agents to see response from web server.
wordlist
Collection of some common wordlists such as RDP password, user name list, ssh password wordlist for brute force. IP Cameras Default Passwords.
Wordlist404
Small but effective wordlist for brute-forcing and discovering hidden things.
xsshunter
The XSS Hunter service - a portable version of XSSHunter.com
XSStrike
Most advanced XSS scanner.