BugBountyResources / Pentesting
Misc. Public Reports of Penetration Testing and Security Audits.
☆33Updated 4 years ago
Alternatives and similar repositories for Pentesting:
Users that are interested in Pentesting are comparing it to the libraries listed below
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- Scripts for OSCE☆18Updated 6 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- learning case to prepare OSWE☆37Updated 5 years ago
- PHP tool to test XSS☆22Updated 5 years ago
- ☆18Updated 7 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆22Updated 4 years ago
- Compilation of JavaScript XSS oneliners payloads that rocks your nuts!☆25Updated 7 years ago
- Alpha version code of Recon UI☆14Updated 7 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆27Updated 6 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- A list to discover work of red team tooling and methodology for penetration testing and security assessment☆78Updated 6 years ago
- ☆28Updated 5 years ago
- An entry level resource to learning bug bounty.☆25Updated 7 years ago
- RAS(RAndom Subdomain) Fuzzer☆42Updated 5 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status …☆18Updated 5 years ago
- Auto Recon Bash Script☆31Updated 3 months ago
- A commandline forced browsing tool for subdomain lists☆9Updated 4 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆39Updated 5 years ago
- Purpose of this repository is to help all the beginner and experienced professionals to understand,learn and share new tricks for the com…☆32Updated 6 years ago
- Updated 6 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 6 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆27Updated 3 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆19Updated 6 years ago
- Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.☆26Updated last month