Skip to content
View kabiri-labs's full-sized avatar

Block or report kabiri-labs

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Pinned Loading

  1. overstep overstep Public

    Matrix-driven authorization testing for HTTP APIs — turn an authorization matrix into positive & negative tests that catch BOLA, BFLA, privilege escalation, and authorization drift in CI/CD.

    Python 1

  2. HostHeaderScanner HostHeaderScanner Public

    Practical Host header attack scanner — injection, SSRF, cache poisoning, open redirect, auth bypass & vhost discovery, with raw-HTTP bypasses and OOB confirmation.

    Python 3 1

  3. rcpayloadgen rcpayloadgen Public

    Context-aware RCE payload generator for authorized security testing. Targeted output via target profiles & WAF-bypass payloads, per-payload out-of-band tokens for blind-RCE detection, and Burp/ffuf…

    Python 11 2

  4. sshfinder sshfinder Public

    Fast, parallel SSH discovery and security auditing across hosts and CIDR ranges: identifies SSH on any port in real time, then flags auth methods, weak crypto, Terrapin (CVE-2023-48795), and reused…

    Python 2

  5. gdos gdos Public

    GraphQL DoS resilience scanner — verify your GraphQL endpoint is hardened against denial-of-service amplification attacks (depth, aliasing, batching, introspection, and more).

    Python 1