Sheheb Alhaye's Projects
The AI-Powered Web Classification Solution
Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure
:scream: A curated list of amazingly awesome OSINT
🐶 A curated list of Web Security materials and resources.
A curated list of awesome YARA rules, tools, and people.
bypassing 403!, use automated workflow to do that >
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
An easy to install and easy to run tool for generating exploit payloads for CVE-2023-38831, WinRAR RCE before versions 6.23
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
Navigate the CVE jungle with ease.
Efficiently discover and scan a web app's content for common vulnerabilities. Identify potential SQL injection, SSRF, XSS, and more.
Welcome to the Digital Care system repository!
mahmood hodiesh assignment
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas in the system. This code is made for security enthusiasts and professionals only. Use it at your own risk.
Web Security Scanner
Tools for Pentesting
Collection of methodology and test case for various web vulnerabilities.
This is a program that will install Metasploit-Framework and Armitage on to any Debian-based Linux Distro (it can also be adapted to work on Mac). This was made possible using a combination of my own code, darkoperator's, and a nightly Metasploit installer from rapid7.
Clothing app branched into four apps (customer, delivery, admin, store) used Firebase auth, Firebase cloud firestore, Firebase storage, Google Maps and flutter
An automated e-mail OSINT tool
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A list of public penetration test reports published by several consulting firms and academic security groups.
Check for misconfiguration of a subdomain Names
A collection of tools and detections for the Sliver C2 Frameworj
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
use a custom word list to brute force subdomains if available
E-mails, subdomains and names Harvester - OSINT
Profile