SmitherSec / bug-bounty-resourcesLinks
Resources I consider useful for security research of web applications
☆58Updated 4 years ago
Alternatives and similar repositories for bug-bounty-resources
Users that are interested in bug-bounty-resources are comparing it to the libraries listed below
Sorting:
- A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms ti…☆91Updated 4 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆37Updated 7 years ago
- ☆31Updated 4 years ago
- Misc bounty and vulndisc things☆86Updated 4 years ago
- Recon for Department of Defense HackerOne program☆45Updated 6 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 6 years ago
- Finds the End-Points in JavaScript files☆94Updated 3 years ago
- A list of Awesome Bughunting oneliners , collected from the various sources☆68Updated last year
- Data from my Sunday streams☆77Updated 6 years ago
- ☆37Updated 5 years ago
- HTTP parameter discovery suite.☆94Updated 5 years ago
- XSS Payload without Anything.☆106Updated 6 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆72Updated 4 years ago
- An entry level resource to learning bug bounty.☆27Updated 7 years ago
- Bug Bounty Dork☆71Updated 3 years ago
- CRLF and open redirect fuzzer☆112Updated 3 years ago
- Suite of programs meant to aid in bug hunting and security assessments☆77Updated 5 years ago
- ☆76Updated 4 years ago
- Awesome XSS Payloads☆84Updated 9 years ago
- A tool to find sensitive keys and passwords in Travis logs☆143Updated 4 years ago
- Repo of useful scripts☆104Updated 5 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 4 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 6 years ago
- ☆38Updated 4 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆113Updated 2 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- Some of my bug bounty tools☆51Updated 5 years ago
- This repo includes my analysis of some public reports.☆57Updated 4 years ago
- ASN reconnaissance script☆129Updated last year
- ☆10Updated 5 years ago