Pinned Repositories
api_wordlist
A wordlist of API names for web application assessments
arabicTS
ArchiveFuzz
Hunt down the secrets from the WebArchives for Fun and Profit
assetnote
Push notifications for passive DNS data
assets-from-spf
A Python script to parse net blocks & domain names from SPF record
awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and write-ups.
awesome-default-passwords
An organized collection of default passwords for various devices and services.
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
Awesome-Vulnerability-Research
🦄 A curated list of the awesome resources about the Vulnerability Research
Ayoub5474's Repositories
Ayoub5474/api_wordlist
A wordlist of API names for web application assessments
Ayoub5474/ArchiveFuzz
Hunt down the secrets from the WebArchives for Fun and Profit
Ayoub5474/awesome-default-passwords
An organized collection of default passwords for various devices and services.
Ayoub5474/bruteforce-lists
Some files for bruteforcing certain things.
Ayoub5474/custom-header
Custom Header adds enhancements and customization options to Home Assistant's Lovelace header.
Ayoub5474/DirDar
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
Ayoub5474/dnsgen
Generates combination of domain names from the provided input.
Ayoub5474/find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Groovy and Scala projects)
Ayoub5474/github-search
Tools to perform basic search on GitHub.
Ayoub5474/gobuster
Directory/file & DNS busting tool written in Go
Ayoub5474/GoldenNuggets-1
Burp Extension for easily creating Wordlists
Ayoub5474/hacker0x01.github.io
Ayoub5474/Insecure-Firebase-Exploit
A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.
Ayoub5474/jenkinz
jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.
Ayoub5474/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Ayoub5474/Lilly
Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, all the possible IPs, PORTs and SSL/TLS Certs are searched to validate the target in-scope.
Ayoub5474/linkedin-skill-assessments-quizzes
Full reference of LinkedIn answers 2021 for skill assessments, LinkedIn test, questions and answers (aws-lambda, rest-api, javascript, react, git, html, jquery, mongodb, java, Go, python, machine-learning, power-point) linkedin excel test lösungen, linkedin machine learning test
Ayoub5474/masher
multiple password 'asher using Python’s hashlib
Ayoub5474/PassList
👍 Awesome password to hack
Ayoub5474/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Ayoub5474/pentest-tools
Custom pentesting tools
Ayoub5474/rescope
Parse scope definitions to Burp Suite / ZAP compatible formats for import
Ayoub5474/RustScan
Faster Nmap Scanning with Rust
Ayoub5474/s4p0
Ayoub5474/slurp
S3 bucket enumerator
Ayoub5474/waybackSqliScanner
Ayoub5474/web-cve-tests
A simple framework for sending test payloads for known web CVEs.
Ayoub5474/wordpress-exploits
All known and unknown public POC's for wordpress themes and plugins
Ayoub5474/wpgarlic
A proof-of-concept WordPress plugin fuzzer
Ayoub5474/zimbra_poc
Zimbra XXE+SSRF+UPLOAD Poc