ZephrFish/bug-bounty-reference external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ZephrFish/bug-bounty-reference

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ZephrFish/bug-bounty-reference)

Close

ZephrFish / bug-bounty-referenceView on GitHubMore

• External links
• Readme badge

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

☆25Apr 19, 2017Updated 9 years ago

Alternatives and similar repositories for bug-bounty-reference

Users that are interested in bug-bounty-reference are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• 003random / online

  View on GitHub
  Uses Go net/http library to distinguish alive hosts from a give list of hosts/urls
  ☆12Dec 23, 2019Updated 6 years ago
• ZephrFish / PurpleTeamWorkshop-LabManual

  View on GitHub
  Purple Team Workshop by @jorgeorchilles
  ☆12Apr 26, 2025Updated last year
• ZephrFish / Red-Teaming-Toolkit

  View on GitHub
  This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
  ☆11Mar 1, 2022Updated 4 years ago
• zxsecurity / NMEAdesync

  View on GitHub
  A tool which allows an attacker to change the time on a GPS-enabled NTP server by using spoofed NEMA sentences
  ☆26Jun 24, 2017Updated 8 years ago
• EmreOvunc / mySCADA-myPRO-7-Hardcoded-FTP-Username-and-Password

  View on GitHub
  CVE-2018-11311 | mySCADA myPRO 7 Hardcoded FTP Username and Password Vulnerability
  ☆12Jul 2, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• G-bdennour / Huawei

  View on GitHub
  Some Of Huawei Routers Exploits
  ☆15Sep 1, 2016Updated 9 years ago
• PentesterLab / sectalks

  View on GitHub
  ☆12Jun 28, 2017Updated 8 years ago
• knapsy / scripts

  View on GitHub
  ☆14Jun 7, 2017Updated 8 years ago
• ppolstra / UDeck

  View on GitHub
  UDeck - USB Deck is a set of scripts for BeagleBone Black to allow write blocking, USB impersonation, and a scriptable USB keyboard with …
  ☆21Sep 5, 2015Updated 10 years ago
• kmille / pentest-wiki

  View on GitHub
  pwnig all the (web)things
  ☆21Nov 21, 2020Updated 5 years ago
• pentagridsec / 5-AFL-suite-docker

  View on GitHub
  Dockerfile for AFL++ and helpful other tools
  ☆21May 5, 2020Updated 5 years ago
• ZephrFish / Blog_Backup

  View on GitHub
  A repository with various tutorials on how to do things in Pentesting, setup environments and other things
  ☆21Apr 26, 2025Updated last year
• wick2o / gitDigger

  View on GitHub
  ☆182Nov 14, 2013Updated 12 years ago
• vrasneur / randkit

  View on GitHub
  Random number rootkit for the Linux kernel
  ☆28Mar 15, 2016Updated 10 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• lorentzenman / payday

  View on GitHub
  Payload generator that uses Metasploit and Veil. Takes IP address as input and calls Veil. Use msfvenom to create payloads and writes res…
  ☆44Jul 24, 2019Updated 6 years ago
• SpiralBL0CK / BlackLotus-analysis-stage2-bootkit-rootkit-stage

  View on GitHub
  Z2A-BlackLotus Challenge stage 2 bootkit-rootkit analysis
  ☆16May 29, 2023Updated 2 years ago
• codingo / guides

  View on GitHub
  A companion repo to accompany detailed guides and YouTube content to allow users to follow along
  ☆13Aug 29, 2020Updated 5 years ago
• bastienperez / Microsoft365-Toolbox

  View on GitHub
  ☆23Feb 27, 2026Updated 2 months ago
• ZephrFish / XSSPayloads

  View on GitHub
  Cross Site Scripting Payloads -- Variations
  ☆72Apr 26, 2025Updated last year
• y1t2r4 / BVED

  View on GitHub
  Browser Vulnerability Exploit DB（浏览器漏洞PoC数据库）
  ☆10Feb 7, 2017Updated 9 years ago
• zaproxy / zap-api-rust

  View on GitHub
  ☆15Aug 25, 2023Updated 2 years ago
• mubix / metasploitwiki

  View on GitHub
  Clone of Metasploit's wiki w/ additions
  ☆17Nov 22, 2015Updated 10 years ago
• ForensicITGuy / libpreloadvaccine

  View on GitHub
  Whitelisting LD_PRELOAD libraries using LD_AUDIT
  ☆63Oct 21, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• trustedsec / Responder

  View on GitHub
  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
  ☆35Nov 10, 2016Updated 9 years ago
• espi0n / tinfoleak

  View on GitHub
  Get detailed information about a Twitter user activity
  ☆17Dec 14, 2017Updated 8 years ago
• jfrancois / SDBF

  View on GitHub
  Smart DNS Brute Forcer
  ☆22Jul 16, 2012Updated 13 years ago
• secopsconsult / powershell

  View on GitHub
  Useful Powershell modules.
  ☆11Mar 10, 2017Updated 9 years ago
• xitmakes / scope.sh

  View on GitHub
  ☆15Mar 21, 2025Updated last year
• omergunal / hackerbot

  View on GitHub
  Chat with hacker assistant
  ☆196Dec 28, 2017Updated 8 years ago
• ambionics / prestashop-exploits

  View on GitHub
  Collection of exploits/POC for PrestaShop cookie vulnerabilities (CVE-2018-13784)
  ☆48Jul 17, 2018Updated 7 years ago
• guardicore / vmware_guest_auth_bypass

  View on GitHub
  Proof of concept of VMSA-2017-0012
  ☆41Jul 27, 2017Updated 8 years ago
• lambdacasserole / hack-this

  View on GitHub
  A collection of common web programming security mistakes.
  ☆16Jun 11, 2019Updated 6 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• ahm3dhany / Broken-Web-Application

  View on GitHub
  An intentionally vulnerable Web-Application based on OWASP 2013 Top 10 List.
  ☆11Aug 1, 2024Updated last year
• dabit / gobyexample

  View on GitHub
  Go con Ejemplos
  ☆17Apr 6, 2021Updated 5 years ago
• a7t0fwa7 / windows-ps-callbacks-experiments

  View on GitHub
  Files for http://deniable.org/windows/windows-callbacks
  ☆26Jul 9, 2020Updated 5 years ago
• wetw0rk / CA-UIM-Nimbus-Research

  View on GitHub
  Vulnerability research on the CA UIM Nimbus protocol
  ☆15Sep 28, 2020Updated 5 years ago
• LukaSikic / Unix-Privilege-Escalation-Exploits-Pack

  View on GitHub
  Exploits for getting local root on Linux, BSD, AIX, HP-UX, Solaris, RHEL, SUSE etc.
  ☆46Dec 24, 2014Updated 11 years ago
• giovanifss / Dumb

  View on GitHub
  Dumain Bruteforcer - a fast and flexible domain bruteforcer
  ☆52Sep 19, 2018Updated 7 years ago
• guelfoweb / iwmap

  View on GitHub
  [BASH] Wardriving tool. Collect all the Wi-Fi wireless networks in a log file (csv format) skipping duplicate.
  ☆18Jun 4, 2011Updated 14 years ago