Muhammad Daffa's repositories
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
match-replace-burp
Useful "Match and Replace" burpsuite rules
all-about-apikey
Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
Key-Checker
Go scripts for checking API key / access token validity
Git-Secret
Go scripts for finding sensitive data like API key / some keywords in the github repository
Oneliner-Bugbounty
A collection oneliner scripts for bug bounty
bash-bounty
Random Tools for Bug Bounty
ctf-writeup
CTF Writeups
bypass-403
Go script for bypassing 403 forbidden
my-nuclei-templates
Some contributions in the nuclei-templates repository
apiguesser-web
Simple website to guess API Key / OAuth Token
apiguesser
Go script to guess an API key / OAuth token found during pentest. CLI version of https://github.com/daffainfo/apiguesser-web/
suricata-rules
Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web application attacks
vulnerable-web
Simple vulnerability labs that created using PHP and MySQL.
nuclei-malware
Template to detect some malware
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Free-Certifications
Curated list of free courses & certifications
public-bugbounty-programs
Community curated list of public bug bounty and responsible disclosure programs.
daffa.info
Personal website and blog made using Hugo and PaperMod theme
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
openxpki-installer
Simple bash script to install OpenXPKI on Debian
headi
Customisable and automated HTTP header injection