yassineaboukir

api_paths

A list of REST API URL paths for use in blackbox API end-point discovery

Aquascreen

Personal script to grab all the subdomains of a specific target from Aquatone and run Webscreenshot tool on each subdomain.

Asnlookup

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

CVE-2018-0296

Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.

CVE-2020-5902

Proof of concept for CVE-2020-5902

sublert

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

the-nuclei-templates

Nuclei templates written by us.

yassineaboukir/sublert

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

yassineaboukir/Asnlookup

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

yassineaboukir/CVE-2018-0296

Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.

yassineaboukir/the-nuclei-templates

Nuclei templates written by us.

yassineaboukir/Resources-for-Beginner-Bug-Bounty-Hunters

A list of resources for those interested in getting started in bug bounties

yassineaboukir/xnLinkFinder

A python tool used to discover endpoints (and potential parameters) for a given target

yassineaboukir/awesome-cve-poc

✍️ A curated list of CVE PoCs.

yassineaboukir/endgame

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈

yassineaboukir/GitDorker

A Python program to scrape secrets from GitHub through usage of a large repository of dorks.

yassineaboukir/nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

yassineaboukir/api-backend

REST API backend for Reconmap

yassineaboukir/gau

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

yassineaboukir/JSA

Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.

yassineaboukir/laravel-exploits

Exploit for CVE-2021-3129

yassineaboukir/luigi

Luigi is a Python module that helps you build complex pipelines of batch jobs. It handles dependency resolution, workflow management, visualization etc. It also comes with Hadoop support built in.

yassineaboukir/ripgen

Rust-based high performance domain permutation generator.

yassineaboukir/sret

Salesforce Recon and Exploitation Toolkit

yassineaboukir/yassineaboukir

yassineaboukir/bcscope

Get the scope of your bugcrowd programs

yassineaboukir/casdoor

An Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML and CAS, QQ group: 645200447

yassineaboukir/chrome-extension-manifests-dataset

>100K Chrome Extension manifest.json files for analysis

yassineaboukir/CVE-2019-0708

CVE-2019-0708 (BlueKeep) proof of concept allowing pre-auth RCE on Windows7

yassineaboukir/CVE-T4PDF

CVEs and Techniques used PDF as an attack vector.

yassineaboukir/fresh.py

An efficient multi-threaded DNS resolver validator

yassineaboukir/Genymotion_ARM_Translation

👾👾 Genymotion_ARM_Translation Please enjoy！

yassineaboukir/gmapsapiscanner

yassineaboukir/imageproxy

A caching, resizing image proxy written in Go

yassineaboukir/PatrowlHears

PatrowlHears - Vulnerability Intelligence Center / Exploits

yassineaboukir/reverie

:art: A ridiculously elegant Jekyll theme.

yassineaboukir/web-client

React frontend for the Reconmap application https://demo.reconmap.org