Nasur Ullah's repositories
31-days-of-pentesting
31 Tips for pentesters & security engineers
android-security-awesome
A collection of android security related resources
awesome-api-security
A collection of awesome API Security tools and resources.
awesome-tmux
A list of awesome resources for tmux
Bug-Bounty-Wordlists
A repository that includes all the important wordlists used while bug hunting.
Bug-Hunting
The aim of this Reposiotry is to Provide the Resoursces of Learning at one place For Bug Bounty Hunters.
bugbounty
Bugbounty Resources
burp-to-sqlmap
Performing SQLInjection test on Burp Suite Bulk Requests using SQLMap
ctf-awesome-resources
A list of Capture The Flag (CTF) frameworks, libraries, resources and software for started/experienced CTF players 🚩
CVE-2021-33044
Dahua IPC/VTH/VTO devices auth bypass exploit
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
docker-ubuntu-vnc-desktop
A Docker image to provide web VNC interface to access Ubuntu LXDE/LxQT desktop environment.
feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
FYI
My last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.
Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
HolyTips
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
malicious-pdf
Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator
mjet
MOGWAI LABS JMX exploitation toolkit
OSCE-Complete-Guide
OSWE, OSEP, OSED
OSCP-1
Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Pentest-Hints
Tips for Penetration Testing
turbo-intruder
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
Web-Attack-Cheat-Sheet
Web Attack Cheat Sheet
weird_proxies
Reverse proxies cheatsheet
WindowsExploitationResources
Resources for Windows exploit development
xxelab
A simple web app with a XXE vulnerability.