Ali Fathi Ali Sawehli's repositories
gh_scanner
GH Scanner Tool is written in Python3 and designed for penetration testers and bug bounty hunters to scan Organization/User repositories for leaks such as GitHub Token, AWS Access Keys, Slack Webhooks, Firebase, Private Keys and more.
dependconfusion-x
DependConfusion-X Tool is written in Python3 that scans and monitors list of hosts for Dependency Confusion
dependabot-x
Dependabot-X is a tool written in Python3 that allows GitHub Organization/User to automate enabling Dependabot alerts feature for all repositories.
showcar-icons
Docs -
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Postgres-SQLi-RCE.js
PostgreSQL Large Objects and UDF (User Defined Functions) RCE exploit re-written in javascript, for easy chaining with XSS
rmq
Message queue system written in Go and backed by Redis
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
TravisLeaks
A tool to find sensitive keys and passwords in Travis logs