Pinned Repositories
andor
Blind SQL Injection Tool with Golang
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
AutoSploit
Automated Mass Exploiter
awesome-browser-exploit
awesome list of browser exploitation tutorials
Awesome-Fuzzing
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
awesome-honeypots
an awesome list of honeypot resources
python-pentest-tools
Python tools for penetration testers
training-application-security
This repository for training application security.
hoainam1989's Repositories
hoainam1989/training-application-security
This repository for training application security.
hoainam1989/andor
Blind SQL Injection Tool with Golang
hoainam1989/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
hoainam1989/awesome-browser-exploit
awesome list of browser exploitation tutorials
hoainam1989/Awesome-Fuzzing
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
hoainam1989/awesome-web-security
🐶 A curated list of Web Security materials and resources.
hoainam1989/aws-lab
Collection of AWS demo
hoainam1989/calexe
Calendar Exploit.
hoainam1989/D4rkXSS
A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
hoainam1989/dref
DNS Rebinding Exploitation Framework
hoainam1989/gitGraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
hoainam1989/github-search
Tools to perform basic search on GitHub.
hoainam1989/gixy
Nginx configuration static analyzer
hoainam1989/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
hoainam1989/httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
hoainam1989/js-vuln-db
A collection of JavaScript engine CVEs with PoCs
hoainam1989/jsfuzz
coverage guided fuzz testing for javascript
hoainam1989/Modlishka
Modlishka. Reverse Proxy.
hoainam1989/node-express-azure
Node & Express Demo App for Azure DevOps
hoainam1989/PENTESTING-BIBLE
This repository was created and developed by Ammar Amer @cry__pto Only. Updates to this repository will continue to arrive until the number of links reaches 10000 links & 10000 pdf files .Learn Ethical Hacking and penetration testing .hundreds of ethical hacking & penetration testing & red team & cyber security & computer science resources.
hoainam1989/pwn_jenkins
Notes about attacking Jenkins servers
hoainam1989/See-SURF
Python based scanner to find potential SSRF parameters
hoainam1989/singularity
A DNS rebinding attack framework.
hoainam1989/snallygaster
Tool to scan for secret files on HTTP servers
hoainam1989/sub.sh
Online Subdomain Detect Script
hoainam1989/totalrecon
TotalRecon installs all the recon tools you need
hoainam1989/TravisLeaks
A tool to find sensitive keys and passwords in Travis logs
hoainam1989/websocket-smuggle
Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
hoainam1989/weird_proxies
Reverse proxies cheatsheet
hoainam1989/zen-rails-security-checklist
Checklist of security precautions for Ruby on Rails applications.