Name: Khaled Mohamed
Type: User
Company: Penetration tester at @bugswagger
Bio: Penetration tester at @bugswagger | Bug hunter | Security Researcher at Hackerone, Detectify Crowdsource, Synack Red Team.
Twitter: 0xElkomy
Location: Egypt
Blog: https://xelkomy.github.io
Khaled Mohamed's Projects
My Portfolio
Burp Suite extension to track vulnerability assessment progress
Red Team Mind Map
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Extracts all S3 Buckets from CSP report headers and then tests for file upload vulns
Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.
ScanT3r - Web Security Scanner
sublert with discord webhook instead of slack
A Powerful Subdomain Takeover Tool
Sudomy is a subdomain enumeration tool, created using a bash script, to analyze domains and collect subdomains in fast and comprehensive way ( Easy, light, fast and powerful )
Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite
I will post some exploits of my WordPress plugins before they are published by the owners
My Tools For Bug Bounty
Readme about Khaled Mohamed xElkomy
xElkomy blog
The Serverless Blind XSS App
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
The OWASP ZAP core project