Ali Fathi Ali Sawehli's Projects
Dependabot-X is a tool written in Python3 that allows GitHub Organization/User to automate enabling Dependabot alerts feature for all repositories.
DependConfusion-X Tool is written in Python3 that scans and monitors list of hosts for Dependency Confusion
GH Scanner Tool is written in Python3 and designed for penetration testers and bug bounty hunters to scan Organization/User repositories for leaks such as GitHub Token, AWS Access Keys, Slack Webhooks, Firebase, Private Keys and more.
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
PostgreSQL Large Objects and UDF (User Defined Functions) RCE exploit re-written in javascript, for easy chaining with XSS
Message queue system written in Go and backed by Redis
Docs -
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
A tool to find sensitive keys and passwords in Travis logs
Trellox Tool is written in Python3 and designed to pull and list Trello boards.