BugBountyResources / Pentesting
Misc. Public Reports of Penetration Testing and Security Audits.
☆33Updated 4 years ago
Alternatives and similar repositories for Pentesting:
Users that are interested in Pentesting are comparing it to the libraries listed below
- ☆18Updated 7 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆39Updated 5 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 6 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 6 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- ☆32Updated 5 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆22Updated 4 years ago
- This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.☆36Updated 3 years ago
- ☆28Updated 5 years ago
- A list to discover work of red team tooling and methodology for penetration testing and security assessment☆78Updated 6 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- An entry level resource to learning bug bounty.☆25Updated 6 years ago
- Bug Bounty Clipboard☆17Updated 5 years ago
- Alpha version code of Recon UI☆14Updated 7 years ago
- Scripts for OSCE☆18Updated 6 years ago
- A simple tool with the power of "Go" to find the hidden Vhosts defined at the server.☆19Updated 6 years ago
- Unauthenticated RCE at Woody Ad Snippets / CVE-2019-15858 (PoC)☆32Updated last year
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- List out all of payload for security testing☆22Updated 2 years ago
- Google Chrome Extension automates testing fundamental Web Problems via Chrome☆21Updated 4 years ago
- SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status …☆18Updated 5 years ago
- PHP tool to test XSS☆22Updated 5 years ago
- My notebook for OSCP Lab☆25Updated 7 years ago
- learning case to prepare OSWE☆37Updated 5 years ago
- Compilation of JavaScript XSS oneliners payloads that rocks your nuts!☆25Updated 7 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆27Updated 6 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆19Updated 6 years ago