Alternatives and similar repositories for bug-bounty-101

Users that are interested in bug-bounty-101 are comparing it to the libraries listed below

• CHYbeta / WAF-Bypass
  WAF Bypass Cheatsheet
  ☆214Updated 7 years ago
• jas502n / cve-2019-2618
  Weblogic Upload Vuln(Need username password)-CVE-2019-2618
  ☆173Updated 6 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆61Updated 7 years ago
• C1h2e1 / Recon
  Easy Fast recon script
  ☆29Updated 5 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆246Updated 4 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆75Updated 3 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆118Updated 4 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆110Updated 6 years ago
• lightless233 / Java-Unserialization-Study
  QAQ Just study unserialize vulnerabilities in Java :)
  ☆196Updated 6 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆139Updated 6 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆122Updated 6 years ago
• gh0stkey / JSONandHTTPP
  Burp Suite Plugin: Convert the json text that returns the body into HTTP request parameters.
  ☆103Updated 3 years ago
• CHYbeta / php_bugs
  PHP代码审计分段讲解
  ☆26Updated 7 years ago
• Tr3jer / dnsAutoRebinding
  ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6
  ☆217Updated 7 years ago
• h4ppy7ree / kernel-exploits
  ☆22Updated 8 years ago
• zer0yu / Berserker
  A list of useful payloads for Web Application Security and Pentest/CTF
  ☆303Updated 10 months ago
• hackping / XXEpayload
  ☆85Updated 5 years ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆77Updated 7 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆165Updated 2 years ago
• pyn3rd / CVE-2018-3245
  CVE-2018-3245-PoC
  ☆167Updated 3 years ago
• bigsizeme / burplugin-java-rce
  ******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-01…
  ☆110Updated 7 years ago
• PortSwigger / authz
  ☆107Updated 8 years ago
• TheTwitchy / xxer
  A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.
  ☆521Updated 4 years ago
• fnmsd / awvs_script_decode
  解密好的AWVS10.5 data/script/目录下的脚本
  ☆265Updated 7 years ago
• pyn3rd / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows
  ☆187Updated 5 years ago
• hanc00l / weblogic_unserialize_exploit
  java unserialize vul for weblogic exploit
  ☆175Updated 6 years ago
• aipengjie / sensitivefilescan
  ☆183Updated 2 years ago
• jas502n / CNVD-C-2019-48814
  WebLogic wls9-async反序列化远程命令执行漏洞
  ☆242Updated 6 years ago
• coco413 / DiscoverSubdomain
  前渗透信息探测工具集-子域名
  ☆137Updated 7 years ago
• orangetw / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆53Updated 8 years ago