motazreda

motazreda's Stars

• JuxhinDB/OOB-Server

  A Bind9 server for pentesters to use for Out-of-Band vulnerabilities

  Language:Shell18273

• manticoresoftware/manticoresearch

  Easy to use open source fast database for search | Good alternative to Elasticsearch now | Drop-in replacement for E in the ELK soon

  Language:C++8.9k492

• narfindustries/http-garden

  Differential fuzzing REPL for HTTP implementations.

  Language:Python69763

• localstack/localstack

  💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline

  Language:Python54.4k3.9k

• ageron/handson-ml2

  A series of Jupyter notebooks that walk you through the fundamentals of Machine Learning and Deep Learning in Python using Scikit-Learn, Keras and TensorFlow 2.

  Language:Jupyter Notebook27.7k12.7k

• EdOverflow/bugbounty-cheatsheet

  A list of interesting payloads, tips and tricks for bug bounty hunters.

  5.8k1.5k

• Orange-Cyberdefense/GOAD

  game of active directory

  Language:PowerShell5.1k704

• VSCodeVim/Vim

  :star: Vim for Visual Studio Code

  Language:TypeScript13.8k1.3k

• horizon3ai/CVE-2022-39952

  POC for CVE-2022-39952

  Language:Python26652

• attakercyebr/240GB-cookie

  122

• KingOfBugbounty/DockerHunt

  Language:Shell4823

• KingOfBugbounty/shoscan-cli

  Shodanscan is a bash scripting search queries using the shodan cli. 🔥

  71

• KingOfBugbounty/KingOfBugBountyTips

  Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

  Language:Go4.2k798

• Wh04m1001/DFSCoerce

  Language:Python71593

• ion-storm/sysmon-edr

  Sysmon EDR POC Build within Powershell to prove ability.

  Language:PowerShell21528

• ghsec/BurpBountyProfile

  BurpSiute - BurpBounty Profiles

  Language:Clojure197

• alufers/mitmproxy2swagger

  Automagically reverse-engineer REST APIs via capturing traffic

  Language:HTML5k216

• Impact-I/reFlutter

  Flutter Reverse Engineering Framework

  Language:Python1.7k212

• hakluke/hakoriginfinder

  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!

  Language:Go840108

• commixproject/commix

  Automated All-in-One OS Command Injection Exploitation Tool.

  Language:Python4.5k806

• marcel-dempers/docker-development-youtube-series

  Language:Go5.2k4k

• MuhammadKhizerJaved/Insecure-Firebase-Exploit

  A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.

  Language:Python28582

• assetnote/commonspeak2-wordlists

  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.

  51698

• TestingPens/SPartan

  SPartan is a Frontpage and Sharepoint eviscerator, great for mutilating Sharepoint sites.

  Language:Python63

• freehuntx/frida-mono-api

  All the mono c exports, ready to be used in frida!

  Language:JavaScript6822

• 0xInfection/Awesome-WAF

  🔥 Web-application firewalls (WAFs) from security standpoint.

  Language:Python6.2k1k

• BishopFox/GitGot

  Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

  Language:Python1.4k206

• aquasecurity/trivy

  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

  Language:Go22.9k2.3k

• sorokinpf/ApiWordlistGenerator

  Generate wordlists for fuzzing API method names

  Language:Python5313

• find-sec-bugs/find-sec-bugs

  The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

  Language:Java2.3k469