A curated list of amazingly bug bounty tips from security researchers around the world.
☆104Mar 14, 2019Updated 6 years ago
Alternatives and similar repositories for awesome-bug-bounty-tips
Users that are interested in awesome-bug-bounty-tips are comparing it to the libraries listed below
Sorting:
- Tools and resources for web app hacking. The payloads.txt documents are a must have for your Burpsuite intruder payload armory. They've h…☆28Jun 10, 2019Updated 6 years ago
- Resources I consider useful for security research of web applications☆61Dec 15, 2020Updated 5 years ago
- Cheat Sheets, Metodologies etc.☆19Apr 12, 2019Updated 6 years ago
- ☆43Feb 26, 2019Updated 7 years ago
- RECON Notes taking from every fucking book about bugbounty and web-app penetration testing exists☆19Feb 29, 2020Updated 6 years ago
- 渗透测试复盘总结☆15Jul 16, 2020Updated 5 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Mar 2, 2020Updated 6 years ago
- The tools I have programmed to help me with bugbounty's☆117Oct 10, 2019Updated 6 years ago
- CTF Writeups☆12Feb 25, 2023Updated 3 years ago
- Python Remote Administration Tool☆14Jan 8, 2017Updated 9 years ago
- Microsoft Exchange Server SSRF漏洞(CVE-2021-26855)☆36Mar 6, 2021Updated 5 years ago
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- Web App bug hunting☆578Nov 26, 2025Updated 3 months ago
- Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.☆1,034Feb 20, 2020Updated 6 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,361Jan 24, 2021Updated 5 years ago
- bugbounty tools☆17Oct 26, 2023Updated 2 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Aug 24, 2020Updated 5 years ago
- Awesome Writeups and POCs☆559Feb 11, 2025Updated last year
- An entry level resource to learning bug bounty.☆28Apr 11, 2018Updated 7 years ago
- This repository contains complete source code for setting up the environment and exploit code for the vulnerability.☆19Mar 23, 2023Updated 2 years ago
- Proof of concept code for client-side vulnerabilities☆17Mar 14, 2019Updated 6 years ago
- This repository is an interactive collection of my solutions to various XSS challenges.☆13Oct 25, 2020Updated 5 years ago
- 套哥代你申请CVE啦!~~~☆24Jun 2, 2018Updated 7 years ago
- Collection of Bug Bounty Tips☆65Dec 10, 2019Updated 6 years ago
- List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)☆74May 23, 2021Updated 4 years ago
- 应急响应实战笔记,一个安全工程师的自我修养。☆17Jul 31, 2019Updated 6 years ago
- A repo to hold any bypasses I work on/study/whatever☆19Dec 30, 2020Updated 5 years ago
- X安蜜罐用的一些存在JSonp劫持的API☆93May 28, 2021Updated 4 years ago
- Hunting Bugs for Fun and Profit☆275Jul 29, 2020Updated 5 years ago
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago
- ☆96May 15, 2020Updated 5 years ago
- 关于蜜罐的一些微小的统计工作☆30Aug 26, 2020Updated 5 years ago
- This are some Dorks and Platform to find the Bug Bounty Programs.☆81Apr 11, 2025Updated 10 months ago
- Happy Hunting☆138Jan 25, 2019Updated 7 years ago
- Cool One Liners at one place to make your recon and bug bounty skills better !☆15Oct 3, 2020Updated 5 years ago
- Subdomain Scan With Ping Method.☆46Dec 12, 2020Updated 5 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆4,073Jul 31, 2024Updated last year
- Repository contains an online education portal filled with web vulnerabilities.☆21Jan 3, 2020Updated 6 years ago
- ☆10Feb 28, 2023Updated 3 years ago