Cybersecurity Tools by Kassem_s94

Dynamic, modern bug-bounty tools, recon automation, results reporting and learning resources.

Tools & Book

XOXO — XSS Recon (includes recon.sh)

Automated recon + parameter extraction that outputs WAF-friendly XSS-ready lists for fast triage.

  • Subdomain and URL collection
  • Parameter extraction & filtering to produce xss-ready lists
  • WAF-friendly rules and reduced false positives
Download available
Download XOXO Contact on Telegram
Payments accepted: PayPal • Crypto • Whish Money. Activation keys delivered manually.

Secrets Hunter (Unified Secret Hunter)

Enterprise-grade secret discovery & validation across websites, APIs and local files. Now with a Firebase POC generator.

  • 65+ secret patterns (Firebase, GitHub, Stripe, AWS, etc.)
  • Optional live validation for high-value keys
  • JSONL output for processing and POC generation
  • Includes Firebase POC generator — builds a ready-to-run HTML POC from discovered Firebase configs
Download available
Download Secrets Hunter Contact on Telegram
Payments accepted: PayPal • Crypto • Whish Money. Use responsibly — authorized testing only.

Aurora — Salesforce Aura Scanner

Find exposed Aura API endpoints, extract sensitive data and produce reproducible Markdown reports for bug bounties.

  • Detects /s/sfsites/aura endpoints & API names
  • Extracts emails and sensitive fields (configurable)
  • Auto-generates domain-specific Markdown reports for submissions
Manual delivery
Contact to Purchase
Payment accepted: PayPal • Crypto • Whish Money. Aurora license delivered after payment.

3 Bugs That Pay — Book

Practical bug bounty guide with real examples and reproduction steps by a top-ranked researcher.

  • Digital copy — $30 on Payhip
  • Only Security version with certificate — $40
  • Certificate included for Only Security course on completion
Available
Buy on Payhip ($30) Buy on Only Security ($40)
Payments accepted: PayPal • Crypto • Whish Money. Contact for off-platform payment details.

Pricing & Contact

XOXO — Plans

  • Monthly — $10
  • 6 months — $50
  • 12 months — $100
Contact via Telegram Contact via WhatsApp Contact via X/Twitter
Accepted: PayPal • Crypto • Whish Money

Secrets Hunter — Plans

  • Early price — $10 / month (first 10 sales)
  • After 10 sales — $20 / month
  • 6 months — $50 (first 10) → then $100
  • 12 months — $100 (first 10) → then $200
Contact via Telegram Contact via WhatsApp Contact via X/Twitter
Accepted: PayPal • Crypto • Whish Money

Aurora — License

  • Lifetime license — $40
  • Price increases to $50 after 40 purchases
Contact via Telegram Contact via WhatsApp Contact via X/Twitter
Accepted: PayPal • Crypto • Whish Money

3 Bugs That Pay — Book Options

  • Digital — $30 (Payhip)
  • Digital + Certificate — $40 (Only Security)
Buy on Payhip Buy on Only Security
Accepted: PayPal • Crypto • Whish Money

About Kassem_s94

Expand for full career highlights and verified links.

Show / Hide Full Profile

Join Our Community

Connect with other security researchers, get tool updates, and share findings with our active community.

Join Telegram Community
Be part of the growing community of bug bounty hunters and security professionals.

Disclaimer & Responsible Use

Important: All tools and POCs are provided for authorized security testing, research and education only. Do not use these tools on systems you do not own or have explicit permission to test.

Unauthorized scanning, data extraction, or exploitation is illegal. Tabbeqai Cybersecurity and the author assume no liability for misuse. Contact us for licensing, activation tokens and authorized usage terms.