Ishaq Mohammed's Projects
Security scanner coordinator
Serverless Architectures Security Top 10 Guide
A collection of useful scripts for penetration testers
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
Docker Automated Build for Security Testing Tools
Collection of the most common vulnerabilities found in iOS applications
A collection of software, libraries, documents, books, resources and cools stuffs about security.
Ansible Playbooks for Security Automation with Ansible2 book
:notebook: Some security related notes
Proof-of-concept codes created as part of security research done by Google Security Team.
Great security list for fun and profit
Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
Serverless ๆถๆๅบ็จๅผๅๆๅ - Serverless Architecture Application Development Guide with Serverless Framework.
A collection of useful Serverless functions I use when pentesting
SHELLING - an offensive approach to the anatomy of improperly written OS command injection sanitisers
a shop web site using python flask, bootstrap, jquery with a Good-looking appearanceใ
Example ASM code following SLAE course and exam assignments
SQL injection vulnerabilities in Stack Overflow PHP questions
The Source Code Sniffer is a poor manโs static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.
SQLI labs to test error based, Blind boolean based, Time based.
(SQLiv) massive SQL injection vulnerability scanner
Automatic SQL injection and database takeover tool
SSRF (Server Side Request Forgery) testing resources
how to write node programs with streams
Capture the Flag: Web Edition https://stripe.com/blog/capture-the-flag-20
Demonstration of how we can connect to cassandra, elasticsearch using spring boots 2