ZephrFish / bug-bounty-referenceLinks
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
☆25Updated 8 years ago
Alternatives and similar repositories for bug-bounty-reference
Users that are interested in bug-bounty-reference are comparing it to the libraries listed below
Sorting:
- WhiteBox CMS analysis☆69Updated 2 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 7 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 8 years ago
- The Unofficial Burp Extension for DNSDumpster.com☆70Updated 7 years ago
- Extreme Vulnerable Node Application☆95Updated 6 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 7 years ago
- CSV injection Vulnerable Script.☆29Updated 8 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- Automated enumeration☆30Updated 4 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 11 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 7 years ago
- Issues to consider when planning a red team exercise.☆15Updated 7 years ago
- Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability☆10Updated 6 years ago
- a collection of payloads for common webapps☆73Updated 12 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 7 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- Subdomain brute force focused on speed and data serialization☆75Updated 2 years ago
- Scripts for Deploying new server☆48Updated 3 months ago
- Babel Scripting Framework☆43Updated 4 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Post-exploitation scripts for OS X persistence and privesc☆72Updated 8 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆103Updated 7 years ago
- Slides from my ShellCon Talk, OSINT for Pen Tests, given 10/19.☆61Updated 7 years ago
- Collection of tools for privesc on Linux☆34Updated 11 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆64Updated 6 years ago
- Practice Web App written in python with some vulnerabilities.☆34Updated 4 years ago
- A simplified SMB Email Client Attack script used for pentests.☆30Updated 6 years ago
- Tools used for Penetration testing / Red Teaming☆66Updated 6 years ago
- PoC for an adaptive parallelised DNS prober☆108Updated 2 years ago