kh4sh3i's repositories
smartrecon
smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter
exchange-penetration-testing
The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)
Apache-Tomcat-Pentesting
Apache Tomcat exploit and Pentesting guide for penetration tester
bug-bounty-writeups
A curated list of available Bug Bounty & Disclosure Programs and Write-ups.
wifi-password-stealer
steal saved wifi passwords in a computer & ip of target then report them through email.
ElasticSearch-Pentesting
ElasticSearch exploit and Pentesting guide for penetration tester
Shodan-Dorks
a curated list of shodan dorks for finding sensitive data in shodan.io
WAF-Bypass
🔥 Web application firewalls (WAF) bypass
xmlrpc-exploit
Exploiting the xmlrpc.php on all WordPress versions
RabbitMQ-Pentesting
RabbitMQ exploit and Pentesting guide for penetration tester
bruteforce-http-authentication
Bruteforce HTTP Authentication. Supports: Basic HTTP authentication ,Digest HTTP authentication
ProxyLogon
ProxyLogon (CVE-2021-26855+CVE-2021-27065) Exchange Server RCE (SSRF->GetWebShell)
CVE-2023-38646
Metabase Pre-auth RCE (CVE-2023-38646)
Fresh-Resolvers
List of fresh DNS resolvers updated daily
Grafana-CVE
a Curated list of Grafana Security Vulnerabilities, CVE & exploit
MQTT-Pentesting
MQTT exploit and Pentesting guide for penetration tester
CVE-2023-22515
CVE-2023-22515 - Broken Access Control Vulnerability in Confluence Data Center and Server
97-Tests-for-Authentication-API
97 JSON Tests for Authentication Endpoints
Favicon-Hash
Calculate Favicon Hash for Shodan
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Python-Interview-Questions
a curated list of Python interview questions and answers
juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Redis-Pentesting
Redis exploit and Pentesting guide for penetration tester
alpine-curl
Alpine with curl and date installed
Awesome-Burp-Extensions
A curated list of awesome Burp Extensions for bug hunter. groups by vulnerability types
subdomain-enumeration
subdomain enumeration via https://crt.sh/
Threat-Modeling
Threat Modeling and tools