KingOfBugbounty / KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
☆4,238Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for KingOfBugBountyTips
- A collection of awesome one-liner scripts especially for bug bounty tips.☆2,699Updated 3 months ago
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆4,733Updated last year
- Collection of methodology and test case for various web vulnerabilities.☆6,132Updated 3 months ago
- Bug Bounty Roadmaps☆1,652Updated 3 years ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆5,745Updated this week
- BBT - Bug Bounty Tools (examples💡)☆1,720Updated 7 months ago
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,709Updated 5 months ago
- Top disclosed reports from HackerOne☆3,898Updated last week
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆5,945Updated last year
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,057Updated last month
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …☆3,164Updated this week
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.☆2,294Updated 3 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,531Updated 4 months ago
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,478Updated 2 years ago
- A collection of custom security tools for quick needs.☆3,152Updated last year
- Ressources for bug bounty hunting☆1,744Updated last year
- Take a list of domains and probe for working HTTP and HTTPS servers☆2,883Updated 4 months ago
- This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.☆1,596Updated 2 years ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆3,763Updated this week
- Find domains and subdomains related to a given domain☆3,045Updated 5 months ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆3,755Updated 3 months ago
- A collection of hacks and one-off scripts☆2,149Updated last year
- A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.☆1,819Updated 3 years ago
- A curated list of amazingly awesome Burp Extensions☆3,000Updated this week
- This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 …☆2,242Updated this week
- Rockyou for web fuzzing☆2,619Updated 2 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆5,106Updated 3 months ago
- This script grab public report from hacker one and make some folders with poc videos☆874Updated last year
- ☆1,019Updated last week
- XSS payloads designed to turn alert(1) into P1☆1,341Updated last year