xElkomy
Founder of @Cyber-Ar | Bug hunter | Security Researcher at Hackerone, Detectify Crowdsource, Synack Red Team.
CO-Founder of @Cyber-ArEgypt
Pinned Repositories
burp-JS-Miner
This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
FindSomething-arabic
اضافة للمتصفح للمساعدة في ايجاد او الوصول الي بعض المسارات المهمة او المعلومات المهمة من خلال الصفحة وملفات الجافا سكربت والاداة تعمل بشكل سلبي بمعني انها لا ترسل اي طلبات للموقع جديدة.
hacker101-ctf
Hacker101 CTF Writeup
LAMP-security-CTF5
CTF VULNHUB AND ROOT-ME
lazys3
misconfig-s3-bucket
Monitorizer
Multithreaded monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools with support for Acunetix & Nuclei
python-takeover
Cyber AR Takeover
Workflow-Bug-Bounty
My Tools For Bug Bounty
xElkomy's Repositories
xElkomy/lazys3
xElkomy/sublert
sublert with discord webhook instead of slack
xElkomy/antiHoneypot
一个拦截 XSSI & 识别Web蜜罐的Chrome扩展
xElkomy/Arab-CTF
Capture the flag in Arabic
xElkomy/arab-politics-economics
بعض اقوال ومواضيع عربية عن السياسة والاقتصاد تلخيصها وضحدها ان امكن وتفسير بعض الاقوال
xElkomy/aryashah2k
My Github Profile README
xElkomy/bash-scripts
Bug bounty scripts.
xElkomy/bounty-monitor
Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains participating in bug bounty programs.
xElkomy/DotGit
An extension for checking if .git is exposed in visited websites
xElkomy/getJS
A tool to fastly get all javascript sources/files
xElkomy/h1scope
Get all Assets of the Hackerone scope for all programs or a particular program.
xElkomy/kxss
This a adaption of tomnomnom's kxss tool with a different output format
xElkomy/MagiskOnWSA
Integrate Magisk root and Google Apps (OpenGApps) into WSA (Windows Subsystem for Android)
xElkomy/mybook
هيبقا دا المستود الخاص بالكتاب
xElkomy/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
xElkomy/pd-actions
Continuous recon and vulnerability assessment using Github Actions.
xElkomy/policymaker
Template-based VDP policy generator.
xElkomy/Portfolio
My Portfolio
xElkomy/random-robbie
xElkomy/RedTeam
Red Team Mind Map
xElkomy/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
xElkomy/ScanApi
Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.
xElkomy/theblackturtle
xElkomy/ugly-duckling
Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
xElkomy/Weaponize-Your-Burp
Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite
xElkomy/wordpress-plugins-exploits
I will post some exploits of my WordPress plugins before they are published by the owners
xElkomy/WSO2-Unauthenticated-SSRF
xElkomy/xElkomy
Readme about Khaled Mohamed xElkomy
xElkomy/xsshunter-express
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
xElkomy/zaproxy
The OWASP ZAP core project