Nasur Ullah's repositories
Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
awesome-android-security
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
Awesome-Fuzzing
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
CVE-2022-0847
CVE-2022-0847
DigiSpark-Scripts
USB Rubber Ducky type scripts written for the DigiSpark.
dnsFookup
DNS rebinding toolkit
domRecon
A domain recon tool to help detect DNS based vulnerabilities, such as zone transfers and subdomain takeovers.
fuzz.txt
Potentially dangerous files
fuzzDicts
渗透测试路径字典,爆破字典。内容来自互联网和实战积累。
fuzzmost
all manner of wordlists
Genymotion_ARM_Translation
👾👾 Genymotion_ARM_Translation Please enjoy!
HackerOneReports
Here you can find mostly all disclosed h1 reports
IPscan
This Script is Framework To automate IP process large scope For Bug Hunting
jadx
Dex to Java decompiler
JSONBee
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
linux-smart-enumeration
Linux enumeration tool for pentesting and CTFs with verbosity levels
mosint
An automated e-mail OSINT tool
OSCP-2
High level cheatsheet that was designed to make checks on the OSCP more manageable. This repository however could also be used for your own studying or for evaluating test systems like on HackTheBox or TryHackMe. DM me via Twitter (@FindingUrPasswd) to request any specific additions to the content that you think would also be helpful!
OSCP-2022
Notes compiled for the OSCP exam.
OSWA-Experience-And-Exam-Preparation
My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam
pocsuite3
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Privilege-Escalation
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
Web-Cache-Vulnerability-Scanner
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
wordlists
Infosec Wordlists
Writeups-1
This repository contains writeups for various CTFs I've participated in (Including Hack The Box).