moamen@home:~#

Moamen Basel

Expert
@momenbasel

it's just works.

keyFinder. Passive API key and secret discovery browser extension for Chrome and Firefox. 80+ detection patterns, zero config.

693

AutoWIFI. Wireless penetration testing framework. Automates WPA/WPA2/WEP/WPS attacks - recon to exploitation in one command. aircrack-ng + hashcat + PMKID.

53

gorobots. gorobots - robots.txt recon & path discovery in Go. Structured parsing, 29-category sensitivity classification, concurrent path probing, bulk domain scanning.

18

subScreen. a JS tool that let you take screenshot of many hosts.

16

liffier. Path traversal / LFI fuzzer in Go - 66 encoding bypass techniques, response analysis, goroutine concurrency, wordlist support, proxy (Burp/Caido).

16

FastRecvSMS. SMS verification CLI. Buy temp numbers and receive OTP codes in one command. Multi-provider (5sim, SMS-Activate). Real-time. 170+ countries.

15

shodscript. Automate exploit/PoC execution against Shodan search results - concurrent dispatch, filtering, structured output, and export.

12

cryptowatcher. watching price of crypto changes in your terminal using NodeJS

8

bitstable. Bitcoin trading bot bulit using NodeJS

7

TeUpload. Upload all camera roll to Telegram Bot instead of Icloud.

6

momenbasel.

6

momenbasel.github.io. Personal blog

6

naggets. old CTF I've made sharing it publicly.

5

Todo-list-Api. Api Bulit with nodeJS as server side and mongoDB as database.

4

Facebook-Auth-PHP. Automated facebook Authentication page

3

Web-Cache-Vulnerability-Scanner. Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

2

extract-scope-from-burpsuite-. turn burpsuite target json configuration file into a list for use outside of burp.

2

theHarvester. E-mail, subdomain and people names harvester

2

goUber. react native app for opening google maps location/link in uber

2

monkey-shell. Shell

1

keyhacks. Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

1

public-apis. A collective list of free APIs for use in software and web development.

1

objection. 📱 objection - runtime mobile exploration

1

OffensiveCloud. Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)

1

recaptcha-phish. Phishing with a fake reCAPTCHA

1

Awesome-WAF. 🔥 Everything awesome about web-application firewalls (WAF).

1

imageSearchSender-Messenger-bot. This is a bot for sending photos to your messenger alternative to searching the web for a photo of a specific word.

1

passwordless-auth. Passwordless Auth Coded using Laravel, Bootstrap

1

miniServerNodejs. a mini-server using node js for creating static web sites.

1

FavouriteFilmsPy. Just a web-page for showing films and its trailer using Python.

1

ChatApp. Chat App using NodeJS

1

skypulse-legal. Privacy Policy and Terms of Use for SkyPulse - Flight Tracker

1

Salati. salati ios app

1
33
Apply