Moein Fatehi's repositories
Backup-Finder
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
Admin-Panel_Finder
A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
xss_vulnerability_challenges
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
file_upload_vulnerability_scenarios
This repository is a dockerized PHP application containing some file upload vulnerability challenges (scenarios).
lfi-to-rce-scenario
This repository is a Dockerized php application containing a LFI (Local File Inclusion) vulnerability which can lead to RCE (Remote Code Execution).
Awesome-Smart-Contract-Security
Your go-to resource for all things Smart Contract Security. Featuring guidelines, best practices, and in-depth articles. Sections include: Vulnerabilities (SWC, OWASP Top 10), Learning Resources (Papers, Blogs, Courses), Tools & Libraries, and Architecture (Smart Contract Platforms, Languages). Stay secure with the latest updates!
CVSS_Calculator
CVSS Calculator - a burp suite extension for calculating CVSS v2 and v3.1 scores of vulnerabilities.
moeinfatehi
Award‑Winning Application Security Specialist, Blockchain Security Researcher
captcha_logical_bypass_scenarios
This repository is a dockerized PHP application containing some captcha logical bypass challenges (scenarios).
PassiveDigger
Optimize your web vulnerability assessments with PassiveDigger, a comprehensive Burp Suite extension that specializes in passive traffic analysis. Detect potential vulnerabilities, get actionable insights, and supercharge your security audits.
rfi_vulnerability_scenarios
Collection of RFI Vulnerability scenarios (challenges) each containing a new bypass technique.
CosmosChainSecurity
A comprehensive resource for securing Cosmos-based blockchain networks, focusing on best practices, case studies, and strategies to protect decentralized exchanges like Osmosis. This repository aims to be an essential guide for developers, security professionals, and blockchain enthusiasts.
LinuxForCyberSecurityCourse
Comprehensive course materials for 'Linux for Cyber Security', covering everything from basic Linux fundamentals to advanced security practices. Includes lectures, assignments, scripts, and additional resources aimed at equipping students with the skills needed to use Linux effectively in cybersecurity roles.
python-postgres-docker
A dockerized python app connected to postgresql with initialized sql script, managed with docker-compose and dockerfile
python_time_extended
This repo contains extended time functions for python
slither
Static Analyzer for Solidity
solidity-dev-environment-ubuntu
Setup Local Solidity Smart Contract Development Environment on Ubuntu 22
solidity-security-blog
Comprehensive list of known attack vectors and common anti-patterns
SWC-registry
Smart Contract Weakness Classification and Test Cases
telegram_music_upload_bash
bash shell script that extracts the metadata of the music from the file and uploads the music+metadata details to telegram chat