mathis2001

Android-nuclei-templates

List of useful Nuclei templates for Android apps static analysis

Cert4Recon

Simple passive Python Recon tool for subdomains enumeration with crt.sh

Dorking

Some Dorking resources

Files-upload

Some useful files for upload features pentesting

M4ldu1n-Oh

Collection of malduino scripts for pentesters and red teaming.

ParamChanger

ParamChanger is a tool allowing you to replace the parameters of a list of urls by a payload entered as an argument

ParamFirstCheck

ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, RCE and Open redirect

Showldan

Recon tool using shodan API to automate shodan information gathering process and find juicy stuff during bug hunting.

Sp00fy

Simple python script to check for email spoofing on a given domain.

WebHackUrls

Simple python OSINT tool for urls recon thanks to the waybackmachine.

mathis2001/WebHackUrls

Simple python OSINT tool for urls recon thanks to the waybackmachine.

mathis2001/Dorking

Some Dorking resources

mathis2001/ParamFirstCheck

ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, RCE and Open redirect

mathis2001/Files-upload

Some useful files for upload features pentesting

mathis2001/Sp00fy

Simple python script to check for email spoofing on a given domain.

mathis2001/M4ldu1n-Oh

Collection of malduino scripts for pentesters and red teaming.

mathis2001/Showldan

Recon tool using shodan API to automate shodan information gathering process and find juicy stuff during bug hunting.

mathis2001/Wordlists

mathis2001/TwittosINT

A simple Twitter OSINT tool written in python

mathis2001/LighTraversal

LighTraversal is a tool designed to find basic directory traversal vulnerabilities

mathis2001/WapPassiveScan

Passive Vulnerability Scanner working with Wappalyzer API and MITRE CVE search functionnality.

mathis2001/CVE-2018-25031

CVE-2018-25031 tests

mathis2001/mathis2001

mathis2001/AndroBurpSetup

Burp certificate installer for Android emulator

mathis2001/DeepConfusion

Simple bash dependency confusion checker (npm, python and ruby)

mathis2001/Grepman

Simple bash script that aim to save time on security code and config review for web technologies.

mathis2001/QRecipe

QRecipe is a simple python script that have been designed to fuzz Android and iOS apps QR code readers for multiple vulnerabilities depending on the given wordlist.

mathis2001/Triplex

Triplex (for Exported Extras Extraction) is a python script that is designed to search exported intents extras in decompiled APKs for a faster pentest and bug bounty recon.

mathis2001/Android-nuclei-templates

List of useful Nuclei templates for Android apps static analysis

mathis2001/Burp-Bambda

Burp Suite Bambda useful scripts.

mathis2001/Burp-Suite-Cert-Ressources

Notes and ressources from Burp Suite Academy learning

mathis2001/FriList

Collection of useful FRIDA Mobile Scripts

mathis2001/HTTP2Whois

Python script to easily use remote whois registries from local HTTP server (for pentesting purposes)

mathis2001/JSembed

Simple Python tool to embed JavaScript code in different types of files (pdf and svg for now)

mathis2001/mathis2001.github.io

A list of Google/Shodan/Github Dorks for Bug Bounty, Web Application Security, and Pentesting

mathis2001/Offensive_Labs

Offensive cybersecurity labs

mathis2001/Open2Phish

Open redirect payloads wordlist generator

mathis2001/PDFjs-XSS-PoC

CVE-2024-4367 & CVE-2024-34342 Proof of Concept

mathis2001/taskHijacker

A simple tool to facilitate practical PoCs of Task Hijacking vulnerabilities on Android apps

mathis2001/XSSerious

PoC XSS scripts and HTMLi for BB