kh4sh3i

kh4sh3i

Geek Repo

Company:jetamooz

Location:United Arab Emirates

Home Page:https://kh4sh3i.ir/

Twitter:@kh4sh3i_

Github PK Tool:Github PK Tool

kh4sh3i's repositories

smartrecon

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter

Language:ShellLicense:CC0-1.0Stargazers:136Issues:6Issues:0

exchange-penetration-testing

The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)

Language:PowerShellLicense:CC0-1.0Stargazers:67Issues:3Issues:0

Apache-Tomcat-Pentesting

Apache Tomcat exploit and Pentesting guide for penetration tester

License:CC0-1.0Stargazers:51Issues:2Issues:0

bug-bounty-writeups

A curated list of available Bug Bounty & Disclosure Programs and Write-ups.

License:CC0-1.0Stargazers:46Issues:6Issues:0

wifi-password-stealer

steal saved wifi passwords in a computer & ip of target then report them through email.

Language:PythonLicense:MITStargazers:26Issues:2Issues:0

ElasticSearch-Pentesting

ElasticSearch exploit and Pentesting guide for penetration tester

License:CC0-1.0Stargazers:22Issues:2Issues:0

Shodan-Dorks

a curated list of shodan dorks for finding sensitive data in shodan.io

License:CC0-1.0Stargazers:22Issues:2Issues:0

WAF-Bypass

🔥 Web application firewalls (WAF) bypass

License:CC0-1.0Stargazers:22Issues:2Issues:0

xmlrpc-exploit

Exploiting the xmlrpc.php on all WordPress versions

License:CC0-1.0Stargazers:21Issues:2Issues:0

RabbitMQ-Pentesting

RabbitMQ exploit and Pentesting guide for penetration tester

License:CC0-1.0Stargazers:12Issues:2Issues:0

bruteforce-http-authentication

Bruteforce HTTP Authentication. Supports: Basic HTTP authentication ,Digest HTTP authentication

Language:PythonLicense:MITStargazers:8Issues:3Issues:0

ProxyLogon

ProxyLogon (CVE-2021-26855+CVE-2021-27065) Exchange Server RCE (SSRF->GetWebShell)

Language:PythonLicense:CC0-1.0Stargazers:8Issues:2Issues:1

CVE-2023-38646

Metabase Pre-auth RCE (CVE-2023-38646)

Language:PythonLicense:CC0-1.0Stargazers:7Issues:2Issues:0

Fresh-Resolvers

List of fresh DNS resolvers updated daily

License:CC0-1.0Stargazers:6Issues:2Issues:0

Grafana-CVE

a Curated list of Grafana Security Vulnerabilities, CVE & exploit

License:CC0-1.0Stargazers:5Issues:2Issues:0

MQTT-Pentesting

MQTT exploit and Pentesting guide for penetration tester

License:CC0-1.0Stargazers:5Issues:2Issues:0

CVE-2023-22515

CVE-2023-22515 - Broken Access Control Vulnerability in Confluence Data Center and Server

Language:PythonLicense:CC0-1.0Stargazers:4Issues:3Issues:0

97-Tests-for-Authentication-API

97 JSON Tests for Authentication Endpoints

License:CC0-1.0Stargazers:2Issues:2Issues:0

Favicon-Hash

Calculate Favicon Hash for Shodan

Language:PythonLicense:CC0-1.0Stargazers:2Issues:2Issues:0

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

License:MITStargazers:2Issues:1Issues:0

Python-Interview-Questions

a curated list of Python interview questions and answers

License:CC0-1.0Stargazers:2Issues:2Issues:0

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Language:TypeScriptLicense:MITStargazers:1Issues:1Issues:0

Redis-Pentesting

Redis exploit and Pentesting guide for penetration tester

License:CC0-1.0Stargazers:1Issues:2Issues:0

server

☁️ Nextcloud server, a safe home for all your data

Language:PHPLicense:AGPL-3.0Stargazers:1Issues:1Issues:0

alpine-curl

Alpine with curl and date installed

License:CC0-1.0Stargazers:0Issues:2Issues:0

Awesome-Burp-Extensions

A curated list of awesome Burp Extensions for bug hunter. groups by vulnerability types

License:CC0-1.0Stargazers:0Issues:2Issues:0

subdomain-enumeration

subdomain enumeration via https://crt.sh/

Language:GoLicense:CC0-1.0Stargazers:0Issues:0Issues:0

Threat-Modeling

Threat Modeling and tools

License:CC0-1.0Stargazers:0Issues:2Issues:0