Muhamad Fadzil Ramli's repositories
bucketbunny
AWS S3 open bucket poc automated script.
CVE-2021-21972
Proof of Concept Exploit for vCenter CVE-2021-21972
HowToHunt
Tutorials and Things to Do while Hunting Vulnerability.
exploitation-course
Offensive Software Exploitation Course
CVE-2020-17144-EXP
Exchange2010 authorized RCE
pi-webcam
Automation to configure a Raspberry Pi as a USB OTG webcam
GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
RubyFu
Rubyfu, where Ruby goes evil!
o365-attack-toolkit
A toolkit to attack Office365
weaponised-XSS-payloads
XSS payloads designed to turn alert(1) into P1
BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
CVE-Exploits
Containing Self Made Perl Reproducers / PoC Codes
Pentest-Notes
Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)
Awesome-Cellular-Hacking
Awesome-Cellular-Hacking
tls-observatory
An observatory for TLS configurations, X509 certificates, and more.
fish-factory
security phishing testing system
graphql-security-labs
GraphQL security workshop labs
BlueKeep
Proof of concept for CVE-2019-0708
House-of-Corrosion
A description of the "House of Corrosion" GLIBC heap exploitation technique.
evilarc
Create tar/zip archives that can exploit directory traversal vulnerabilities
Pentests
Something you need to pentest...!!
locationapi-client-libraries
Contains the OpenAPI Specification (v3) for LocationAPI and client libraries generated by the openapi-generator https://openapi-generator.tech/
the-art-of-subdomain-enumeration
This repository contains all the supplement material for the book "The art of sub-domain enumeration"
OSCP
OSCP
FIR
Fast Incident Response
OpenBTS
GSM+GPRS Radio Access Network Node
Mobile-Security-Framework-MobSF
Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS/Windows) automated pen-testing framework capable of performing static, dynamic analysis and web API testing.