SoheilKhodayari

Security researcher, hacking, patching, and drinking coffee... and then do it all over again!

CrowdStrikeKL, Germany

Pinned Repositories

Basta-COSI
A framework for the detection of COSI vulnerabilities / XS-Leaks
Language:Python12 1 11
CHIPSEC-GUI
A CHIPSEC-based GUI For Platform Security Assessment
Language:Python3 1 00
CHMS_SYSTEM
An integrated hospital management system
Language:JavaScript7 6 13
DOMClobbering
DOM Clobbering Wiki, Browser Testing, and Payload Generation
Language:JavaScript48 3 95
html-sanitizer-testing-pipeline
Scripts for testing HTML sanitizers
Language:JavaScript3 1 01
JAW
JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
Language:JavaScript111 2 1516
Lyric-Music-Player
A simple android music player with song lyrics
Language:Java7 4 05
same-site-wiki
SameSite Cookies Wiki
Language:HTML7 1 00
TheThing
TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
Language:Python51 1 52
sast-testability-patterns
Testability Pattern Catalogs for SAST
Language:JavaScript30 5 302

SoheilKhodayari's Repositories

SoheilKhodayari/JAW
JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
Language:JavaScript111 2 1516
SoheilKhodayari/TheThing
TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
Language:Python51 1 52
SoheilKhodayari/DOMClobbering
DOM Clobbering Wiki, Browser Testing, and Payload Generation
Language:JavaScript48 3 95
SoheilKhodayari/Basta-COSI
A framework for the detection of COSI vulnerabilities / XS-Leaks
Language:Python12 1 11
SoheilKhodayari/same-site-wiki
SameSite Cookies Wiki
Language:HTML7 1 00
SoheilKhodayari/CHIPSEC-GUI
A CHIPSEC-based GUI For Platform Security Assessment
Language:Python3 1 00
SoheilKhodayari/html-sanitizer-testing-pipeline
Scripts for testing HTML sanitizers
Language:JavaScript3 1 01
SoheilKhodayari/STORK
A framework to detect and analyze open redirect vulnerabilities
Language:Python3 1 0
SoheilKhodayari/Graph
A social network
Language:HTML2 2 0
SoheilKhodayari/crowdea
An open-source idea-management website with crowd-sourcing, crowd-funding and market-testing capabilities.
Language:HTML1 3 00
SoheilKhodayari/js-malicious-dataset
This repository contains a list of pseudo-sorted malicious JavaScripts collected from time to time.
Language:HTML1 0 0
SoheilKhodayari/Lexical-Analyzer
An Implementation of a simple lexical Analyzer
Language:Python1 2 0
SoheilKhodayari/build-your-own-x
Master programming by recreating your favorite technologies from scratch.
SoheilKhodayari/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
Language:Python0 0
SoheilKhodayari/django-hackathon-starter
A boilerplate for Django web applications
Language:Python1 0
SoheilKhodayari/DOMPurify
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
Language:JavaScript0 0
SoheilKhodayari/esprima-python
ECMAScript parsing infrastructure for multipurpose analysis
Language:Python0 0
SoheilKhodayari/filbert
JavaScript parser of Python
Language:JavaScript0 0
SoheilKhodayari/gitignore
A collection of useful .gitignore templates
0 0
SoheilKhodayari/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Language:Python1 0
SoheilKhodayari/js2cpg
Language:Scala0 0
SoheilKhodayari/Local-LLM-Comparison-Colab-UI
Compare the performance of different LLM that can be deployed locally on consumer hardware. Run yourself with Colab WebUI.
Language:Jupyter Notebook0 0
SoheilKhodayari/nova
OpenStack Compute (Nova)
Language:Python2 0
SoheilKhodayari/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Language:Python1 0
SoheilKhodayari/project-foxhound-builder
Script to build project foxhound with playwright integration.
Language:Shell0 0
SoheilKhodayari/puppeteer-recaptcha-solver
Recaptcha solver for puppeteer.
Language:JavaScript0 0
SoheilKhodayari/reference
Share quick reference cheat sheet for developers.
1 0
SoheilKhodayari/sast-testability-patterns
Testability Pattern Catalogs for SAST
Language:JavaScript0 0
SoheilKhodayari/security-crawl-maze
Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link resources from a valid HTML document.
Language:HTML0 0
SoheilKhodayari/www-project-testability-patterns-for-web-applications
OWASP Foundation Web Respository
Language:HTML0 01