ZephrFish / bug-bounty-referenceLinks
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
☆25Updated 8 years ago
Alternatives and similar repositories for bug-bounty-reference
Users that are interested in bug-bounty-reference are comparing it to the libraries listed below
Sorting:
- WhiteBox CMS analysis☆68Updated 2 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- The Unofficial Burp Extension for DNSDumpster.com☆70Updated 7 years ago
- Various tools for managing bug bounty recon and exploration.☆49Updated 2 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 8 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆42Updated 8 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 8 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- Extreme Vulnerable Node Application☆95Updated 7 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 8 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆26Updated 7 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 8 years ago
- CSV injection Vulnerable Script.☆29Updated 8 years ago
- Slides from my ShellCon Talk, OSINT for Pen Tests, given 10/19.☆60Updated 7 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]☆96Updated 12 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Issues to consider when planning a red team exercise.☆15Updated 8 years ago
- Hacking challenges☆31Updated 8 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 8 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆102Updated 8 years ago
- a collection of payloads for common webapps☆72Updated 12 years ago
- automato should help with automating some of the user-focused enumeration tasks during an internal penetration test.☆72Updated 5 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆77Updated 6 years ago
- malicious file maker/sender to create and send malicious attachments to test your email filter/alerting☆69Updated 8 years ago
- The initial conversation slides and menu of scenarios☆38Updated 4 years ago
- PoC for an adaptive parallelised DNS prober☆108Updated 3 years ago
- ☆13Updated 8 years ago
- Tool for checking Whether a domain or its multiple sub-domains are up and running.☆72Updated 6 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 12 years ago
- Subdomain brute force focused on speed and data serialization☆75Updated 2 years ago