yassineaboukir Goto Github PK

followers: 822.0 following: 16.0 repos: 89.0 gists: 18.0

Name: Yassine ABOUKIR

Type: User

Bio: Application security engineering, consulting, and bug bounties.

Twitter: yassineaboukir

                                                         )_(
                                                        ~° °~__ ___
                                                         `*´   ´   \==
                                                           \ ,---| /
                                                           ||    ||    
                                                           ^^    ^^                  
                                                            Hi 👋       

                                          💻 AppSec engineering, consulting and bug bounties.
                                          📩 DM @yassineaboukir on Twitter or e-mail [email protected]

Yassine ABOUKIR's Projects

api_paths

A list of REST API URL paths for use in blackbox API end-point discovery

aquascreen

Personal script to grab all the subdomains of a specific target from Aquatone and run Webscreenshot tool on each subdomain.

asnlookup

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by me and various courses.

awesome-cve-poc

✍️ A curated list of CVE PoCs.

bbrecon

Python library and CLI for the Bug Bounty Recon API

bcscope

Get the scope of your bugcrowd programs

blinder

breachcompilation

BreachCompilation Tools

casdoor

An Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML and CAS, QQ group: 645200447

check-cve-2019-19781

Test a host for susceptibility to CVE-2019-19781

chrome-extension-manifests-dataset

>100K Chrome Extension manifest.json files for analysis

cve-2018-0296

Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.

cve-2019-0708

CVE-2019-0708 (BlueKeep) proof of concept allowing pre-auth RCE on Windows7

cve-2020-5902

Proof of concept for CVE-2020-5902

cve-2020-5902-scanner

Automated script for F5 BIG-IP scanner (CVE-2020-5902) using hosts retrieved from Shodan API.

cve-monitor

Monitor @cvenew twitter stream and send an email alert for every new CVE ID seen

cve-reverse

cve-t4pdf

CVEs and Techniques used PDF as an attack vector.

dnsgrep

Quickly Search Large DNS Datasets

endgame

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈