Giter Site home page Giter Site logo

Mahdi Hassani's Projects

cve icon cve

Gather and update all available and newest CVEs with their PoC.

cve-2023-5561-poc icon cve-2023-5561-poc

WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack (Check with Burp Suite)

cve-2024-4577 icon cve-2024-4577

PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC

cvemap icon cvemap

Navigate the CVE jungle with ease.

exchange-get-version icon exchange-get-version

The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)

fast-google-dorks-scan icon fast-google-dorks-scan

The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.

howtohunt icon howtohunt

Tutorials and Things to Do while Hunting Vulnerability.

jexboss icon jexboss

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

kali-whoami icon kali-whoami

Whoami is a privacy tool developed to keep you anonymous on Kali Linux at the highest level.

malicious-pdf icon malicious-pdf

πŸ’€ Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

oob-server icon oob-server

A Bind9 server for pentesters to use for Out-of-Band vulnerabilities

poc-in-github icon poc-in-github

πŸ“‘ PoC auto collect from GitHub. ⚠️ Be careful Malware.

seatbelt icon seatbelt

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

validsubs icon validsubs

This Tool , Uses SubFinder and AssetFinder To Fetch SubDomains and Takes Them To Httpx Tool

vulnerability-checklist icon vulnerability-checklist

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

weaponize-your-burp icon weaponize-your-burp

Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite

xsshunter-express icon xsshunter-express

An easy-to-setup version of XSS Hunter. A fork of the original that has Discord and Slack Notifications

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    πŸ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. πŸ“ŠπŸ“ˆπŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❀️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.