ZephrFish / bug-bounty-referenceLinks
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
☆25Updated 8 years ago
Alternatives and similar repositories for bug-bounty-reference
Users that are interested in bug-bounty-reference are comparing it to the libraries listed below
Sorting:
- WhiteBox CMS analysis☆68Updated 2 years ago
- The Unofficial Burp Extension for DNSDumpster.com☆70Updated 7 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- CSV injection Vulnerable Script.☆29Updated 8 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆42Updated 8 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 8 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 8 years ago
- Extreme Vulnerable Node Application☆95Updated 6 years ago
- a collection of payloads for common webapps☆72Updated 12 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 8 years ago
- automato should help with automating some of the user-focused enumeration tasks during an internal penetration test.☆72Updated 5 years ago
- Subdomain brute force focused on speed and data serialization☆75Updated 2 years ago
- Various tools for managing bug bounty recon and exploration.☆48Updated 2 years ago
- Post-exploitation scripts for OS X persistence and privesc☆73Updated 8 years ago
- PoC for an adaptive parallelised DNS prober☆108Updated 3 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 13 years ago
- malicious file maker/sender to create and send malicious attachments to test your email filter/alerting☆69Updated 8 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆77Updated 6 years ago
- ☆57Updated 8 years ago
- Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability☆10Updated 7 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆102Updated 8 years ago
- ☆61Updated 7 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 12 years ago
- A tool to catch spoofed NBNS responses.☆50Updated 7 years ago
- Automated enumeration☆30Updated 4 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]☆96Updated 11 years ago
- The initial conversation slides and menu of scenarios☆38Updated 4 years ago
- API testing tool written with Python☆56Updated 8 years ago
- Issues to consider when planning a red team exercise.☆15Updated 8 years ago