Pinned Repositories
a-full-list-of-wordlists
this contain the burp pack
api-backend
REST API backend for Reconmap
api_paths
A list of REST API URL paths for use in blackbox API end-point discovery
Arjun
HTTP parameter discovery suite.
awesome-cve-poc
✍️ A curated list of CVE PoCs.
bruteforce-lists
Some files for bruteforcing certain things.
c-network-programming-best-snipts
Sample c network programming
command-injection-payload-list
🎯 Command Injection Payload List
IOT-using-JavaScript
This is a small scale IOT project done in order to understand how a microcontroller can be controlled using JavaScript
OWASP-Maven-vulneribility-checker
This tool is responsible to generate the pom file and also extract the CVE's related to the respective mavens
AreedAhmed's Repositories
AreedAhmed/Java-Deserializer
This tool is responsible to perform java deserialization attacks on server end points
AreedAhmed/api-backend
REST API backend for Reconmap
AreedAhmed/api_paths
A list of REST API URL paths for use in blackbox API end-point discovery
AreedAhmed/awesome-cve-poc
✍️ A curated list of CVE PoCs.
AreedAhmed/bruteforce-lists
Some files for bruteforcing certain things.
AreedAhmed/endgame
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈
AreedAhmed/firebase
Exploiting misconfigured firebase databases
AreedAhmed/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
AreedAhmed/git-dumper
A tool to dump a git repository from a website
AreedAhmed/GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
AreedAhmed/gitleaks
Audit git repos for secrets 🔑
AreedAhmed/hackerone-reports
Top disclosed reports from HackerOne
AreedAhmed/InformationSecurity
A place where I can create, collect and share tooling, resources and knowledge about information security.
AreedAhmed/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
AreedAhmed/livestream-api-samples
Public API Sample
AreedAhmed/Malware-Exhibit
🚀🚀 This is a 🎇🔥 REAL WORLD🔥 🎇 Malware Collection I have created or Compiled/analysed🔥 to understand more about Malware threats😈, analysis and mitigation🧐.
AreedAhmed/MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
AreedAhmed/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
AreedAhmed/Sample-Trojan
AreedAhmed/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
AreedAhmed/Secured-Chat-System
This project was built to make a secure chat system using security protocols.
AreedAhmed/smuggler
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
AreedAhmed/svg-cheatsheet
A cheatsheet for exploiting server-side SVG processors.
AreedAhmed/takeover
Sub-Domain TakeOver Vulnerability Scanner
AreedAhmed/The-Box-purchase-app-
A freelancing project -> Inventory app
AreedAhmed/User-Agent-Bruter
Brute force a web target with different user-agents to see response from web server.
AreedAhmed/wordlist
Collection of some common wordlists such as RDP password, user name list, ssh password wordlist for brute force. IP Cameras Default Passwords.
AreedAhmed/Wordlist404
Small but effective wordlist for brute-forcing and discovering hidden things.
AreedAhmed/xsshunter
The XSS Hunter service - a portable version of XSSHunter.com
AreedAhmed/XSStrike
Most advanced XSS scanner.