Penetration-List: A comprehensive resource for testers, covering all types of vulnerabilities and materials used in Penetration Testing. Includes payloads, dorks, fuzzing materials, and offers in-depth theory sections. Visit our Medium profile for more information.
☆886Dec 28, 2025Updated 2 months ago
Alternatives and similar repositories for Penetration-List
Users that are interested in Penetration-List are comparing it to the libraries listed below
Sorting:
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,266Feb 10, 2024Updated 2 years ago
- A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for id…☆1,774Sep 11, 2025Updated 5 months ago
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆500Jun 28, 2025Updated 8 months ago
- All about bug bounty (bypasses, payloads, and etc)☆6,655Sep 8, 2023Updated 2 years ago
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆311Mar 31, 2024Updated last year
- A cheat sheet that contains advanced queries for SQL Injection of all types.☆3,149May 13, 2023Updated 2 years ago
- OSWE, OSEP, OSED, OSEE☆3,767Jan 2, 2026Updated 2 months ago
- This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structur…☆8,664Jun 22, 2025Updated 8 months ago
- A collection of snippets of codes and commands to make your life easier!☆2,875Sep 25, 2023Updated 2 years ago
- Tips and Tutorials for Bug Bounty and also Penetration Tests.☆1,650Oct 7, 2025Updated 4 months ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,823Aug 20, 2025Updated 6 months ago
- OSCP Cheat Sheet☆3,642Jan 29, 2026Updated last month
- Checklists for Testing Security environment☆869Mar 12, 2025Updated 11 months ago
- Top disclosed reports from HackerOne☆5,358Updated this week
- A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.☆3,173Feb 23, 2026Updated last week
- AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,☆732Mar 21, 2024Updated last year
- OSCP 2023 Preparation Guide | Courses, Tricks, Tutorials, Exercises, Machines☆1,069Jan 25, 2026Updated last month
- Mind-Maps of Several Things☆2,626Jun 29, 2023Updated 2 years ago
- This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 …☆2,462Nov 16, 2024Updated last year
- ☆90Aug 5, 2023Updated 2 years ago
- Tools and Techniques for Red Team / Penetration Testing☆8,534Mar 18, 2025Updated 11 months ago
- A collection of one-liners for bug bounty hunting.☆1,427Jan 21, 2025Updated last year
- ☆1,698Aug 19, 2022Updated 3 years ago
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws☆3,925Oct 4, 2025Updated 5 months ago
- Offensive Security OSCP+, OSEP, OSWP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA, OSIR, OSTH Exam and Lab Reporting / Note-Taking Tool☆897Oct 6, 2025Updated 4 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382May 19, 2023Updated 2 years ago
- ☆244Jan 23, 2025Updated last year
- A curated list of various bug bounty tools☆5,805Feb 9, 2026Updated 3 weeks ago
- 1337 Wordlists for Bug Bounty Hunting☆932Updated this week
- A modern tool written in Python that automates your xss findings.☆471Nov 26, 2023Updated 2 years ago
- Collection of methodology and test case for various web vulnerabilities.☆7,034Jun 25, 2025Updated 8 months ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆262Jul 6, 2025Updated 7 months ago
- A repository that includes all the important wordlists used while bug hunting.☆1,379Mar 11, 2023Updated 2 years ago
- Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.☆753Nov 19, 2025Updated 3 months ago
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆377Dec 5, 2023Updated 2 years ago
- how to look for Leaked Credentials !☆1,033May 6, 2024Updated last year
- G3nius Tools Sploit is a penetration testing tool with a lot of plugins for advanced cybersecurity attacks. User-friendly, Easy and modul…☆63Apr 13, 2024Updated last year
- A simple tool for bypassing file upload restrictions.☆894Jul 22, 2024Updated last year
- ☆300Dec 9, 2022Updated 3 years ago