Mustafa Jamal's repositories
Guide-to-SSRF
Guide to SSRF
Interesting-Things
Single-WebApp-Target essentials testing methodology tool starting at recon-information gathering for the juicy stuff ended up in exploitation.
public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups
Remote-Code-Execution-Guide
Remote Code Execution Guide
Sensitive-Data-Exposures-with-Github
Techniques / Tips and tricks for finding sensitive data exposures in Github for Penetration Testers / Bug Bounty Hunters
admin-finder
Blazing fast admin panel finder with multi-threading
Awesome-Smart-Contract-Security
A curated list of Smart Contract Security materials and resources For Researchers
DirDar
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
Hadith-API
The Bot provide Hadith API and fetch content via api.hadith.sutanlab.id
massdns
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
MustafaSky
Config files for my GitHub profile.
new-zile
Zile searchs api-keys in different sites and endpoints.-
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
top-100-passwords
A list of the top 100 most frequent passwords that were used in SSH attempts to try gain access to my VPS.
VPS_buddy
this is a simple script to help you to quickly install tools on your VPS
wfuzz
Web application fuzzer
XSS-using-SVG-file
The list of files through which we can pop-up the java script alert box
zile
Extract API keys from file or url using by magic of python and regex.