ZephrFish / bug-bounty-referenceLinks
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
☆25Updated 8 years ago
Alternatives and similar repositories for bug-bounty-reference
Users that are interested in bug-bounty-reference are comparing it to the libraries listed below
Sorting:
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- WhiteBox CMS analysis☆69Updated 2 years ago
- The Unofficial Burp Extension for DNSDumpster.com☆70Updated 7 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- ☆21Updated 8 years ago
- A collection of scripts that I've written while pentesting.☆31Updated 6 years ago
- Issues to consider when planning a red team exercise.☆15Updated 7 years ago
- Dumain Bruteforcer - a fast and flexible domain bruteforcer☆53Updated 6 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- ☆26Updated 8 years ago
- PHP tool to test XSS☆22Updated 5 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 8 years ago
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆23Updated 7 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- A Pythonic wrapper to MassDNS☆24Updated 7 years ago
- Post-exploitation scripts for OS X persistence and privesc☆72Updated 8 years ago
- Script to automate, manage, and multithread Nikto scans.☆60Updated 5 years ago
- Quick and dirty scripts that don't really belong in a larger project☆34Updated 3 months ago
- Subdomain brute force focused on speed and data serialization☆74Updated 2 years ago
- CSV injection Vulnerable Script.☆29Updated 7 years ago
- a collection of payloads for common webapps☆73Updated 12 years ago
- Create lists from nmap output.☆13Updated 4 years ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 4 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆26Updated 7 years ago