omarhashem123 / Security-Research
This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research
☆42Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Security-Research
- ☆68Updated last year
- Authorization-Nuclei-Templates☆37Updated last month
- Web cache poisoning vulnerability scanner.☆61Updated 2 years ago
- ☆34Updated 2 years ago
- Tool for testing reflections in the HTTP responses☆60Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 10 months ago
- A repository to host the subdomain wordlists from my blog https://medium.com/@nynan/what-i-learnt-from-reading-217-subdomain-takeover-bug…☆40Updated 2 years ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆27Updated 10 months ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated last year
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- A standalone Blind XSS Script.☆45Updated last year
- Fast Bug Bounty Script☆36Updated last year
- A simple plugin to export JS files from one or multiple targets☆39Updated 11 months ago
- ☆30Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆39Updated 2 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- Bug Bounty & Other Stuff☆52Updated 2 years ago
- I collected it to help the bug hunter get a reward☆55Updated 2 years ago
- About Recon Tools,Methodology and writeups☆18Updated 10 months ago
- ☆67Updated 2 years ago
- Inside403 is a powerful and versatile web security testing tool designed to assess the robustness of web pages and directories against 40…☆29Updated last year
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆35Updated last year
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆42Updated 8 months ago
- ☆20Updated last year
- Subdomains enumeration, various scans and testing of some vulnerabilities.☆75Updated 5 months ago