boy-hack/bugbounty-cheatsheet external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

boy-hack/bugbounty-cheatsheet

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/boy-hack/bugbounty-cheatsheet)

Close

boy-hack / bugbounty-cheatsheetView on GitHubMore

• External links
• Readme badge

A list of interesting payloads, tips and tricks for bug bounty hunters.

☆24Sep 1, 2019Updated 6 years ago

Alternatives and similar repositories for bugbounty-cheatsheet

Users that are interested in bugbounty-cheatsheet are comparing it to the libraries listed below

• 0xMJ / CVE-2018-2628

  View on GitHub
  漏洞利用工具
  ☆12Jan 7, 2019Updated 7 years ago
• SkewwG / Bypass

  View on GitHub
  过各waf注入上传等
  ☆25Mar 23, 2018Updated 7 years ago
• TideSec / TideWave

  View on GitHub
  潮涌web漏洞自动化挖掘平台——自动化扫描全网或特定范围web资产，之后获取指纹信息、爬取页面url并提炼，最后进行特定payload测试。
  ☆50May 9, 2020Updated 5 years ago
• AntSwordProject / AntSword-JSP-Decoder

  View on GitHub
  Jsp Decoder Source Code
  ☆16Mar 23, 2021Updated 4 years ago
• romangol / CTF

  View on GitHub
  ☆13Jul 31, 2016Updated 9 years ago
• gamozolabs / hellscape

  View on GitHub
  Playground for testing feedback
  ☆16Aug 12, 2020Updated 5 years ago
• tianyulab / Hunting_lateral_movement

  View on GitHub
  《横向移动攻击与检测技术》专栏文章
  ☆17Sep 5, 2019Updated 6 years ago
• Loneyers / TPScan4Burp

  View on GitHub
  ThinkPHP vulnerability scan for BurpSuite
  ☆15Nov 18, 2019Updated 6 years ago
• yuligesec / ctf473831530_2019_web1_yulige

  View on GitHub
  CTF学习交流群473831530。第四期入群题之WEB1-docker环境。
  ☆16Aug 24, 2019Updated 6 years ago
• meizjm3i / NUPT_Challenges

  View on GitHub
  南京邮电大学网络攻防训练平台题目（也有其他地方的题目，会标注）
  ☆70Apr 27, 2018Updated 7 years ago
• l3yx / springboot-shiro

  View on GitHub
  ☆16Jul 25, 2023Updated 2 years ago
• phil-fly / goWeakPass

  View on GitHub
  使用golang编写的服务弱口令检测
  ☆41Apr 25, 2023Updated 2 years ago
• qianl0ng / CVE-2018-2893

  View on GitHub
  可以直接反弹shell
  ☆47Apr 5, 2023Updated 2 years ago
• lushijie / xss-defense

  View on GitHub
  xss 防御
  ☆22Jan 12, 2018Updated 8 years ago
• aedoo / WebServiceScanner

  View on GitHub
  扫描C段或B段常见的Web端口并提取title，程序内置常见的Web端口，可自行添加。Scan common web ports and extract titles. The built-in common web port can be added by yoursel…
  ☆20Sep 13, 2018Updated 7 years ago
• ring04h / pentest

  View on GitHub
  渗透测试用到的东东
  ☆428May 6, 2020Updated 5 years ago
• cvkki / src

  View on GitHub
  日常src平台域名收集
  ☆594Jul 11, 2019Updated 6 years ago
• Xyntax / Some-PoC-oR-ExP

  View on GitHub
  各种漏洞poc、Exp的收集或编写
  ☆18Jun 17, 2016Updated 9 years ago
• l3m0n / WebFuzzAttack

  View on GitHub
  web模糊测试 - 将漏洞可能性放大
  ☆145Apr 23, 2019Updated 6 years ago
• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆866Jul 21, 2019Updated 6 years ago
• tetrane / reven2-resources

  View on GitHub
  reven2-scripts contains a set of REVEN scripts to automate timeless-analysis on REVEN traces.
  ☆30Aug 31, 2022Updated 3 years ago
• BBS-Bill-Gates / CTF

  View on GitHub
  ☆24Jul 6, 2019Updated 6 years ago
• ba0gu0 / WebRange

  View on GitHub
  一个Web版的docker管理程序，可以用来运行各种docker漏洞环境和CTF环境。
  ☆102Nov 30, 2019Updated 6 years ago
• SniperOJ / Attack-Defense-Framework

  View on GitHub
  A framework for CTF Attack with Defense Mode
  ☆219Dec 12, 2018Updated 7 years ago
• BetterDefender / AwvsBatchImport

  View on GitHub
  AWVS12&AWVS13 通用API批量导入脚本 AWVS12 & AWVS13 common API batch import script.
  ☆25Mar 3, 2022Updated 4 years ago
• jas502n / zentao-getshell

  View on GitHub
  禅道8.2 - 9.2.1前台Getshell
  ☆78Sep 19, 2019Updated 6 years ago
• l3m0n / whatweb

  View on GitHub
  更快速的进行Web应用指纹识别
  ☆170May 9, 2019Updated 6 years ago
• wreet / skylight_fuzzer

  View on GitHub
  a simple frida-based fuzzer for skylight based on @ret2systems pwn2own work
  ☆30May 19, 2019Updated 6 years ago
• guimaizi / testing_wave

  View on GitHub
  ☆57Jun 1, 2020Updated 5 years ago
• Qclover / jsspider

  View on GitHub
  A js infomation dig tool.
  ☆69May 22, 2020Updated 5 years ago
• TideSec / Common_Spider

  View on GitHub
  一个还算通用的爬虫脚本，可自己设定爬取的深度，可以把动态页面和外链单独分出来~
  ☆64Jan 7, 2019Updated 7 years ago
• theLSA / ecshop-getshell

  View on GitHub
  ecshop rce getshell
  ☆31Dec 5, 2018Updated 7 years ago
• trailofbits / sienna-locomotive

  View on GitHub
  A user-friendly fuzzing and crash triage tool for Windows
  ☆132Nov 27, 2019Updated 6 years ago
• jiangsir404 / POC-S

  View on GitHub
  POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞， 对功能进行强化以及脚本进行分类添加，自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC
  ☆357Mar 12, 2020Updated 5 years ago
• rabbitmask / WeblogicScanLot

  View on GitHub
  WeblogicScanLot系列，Weblogic漏洞批量检测工具，V2.2
  ☆184Aug 1, 2020Updated 5 years ago
• atiger77 / XunFeng_Docker

  View on GitHub
  同程巡风项目Docker镜像版
  ☆24Dec 22, 2016Updated 9 years ago
• jas502n / ThinkCMF_getshell

  View on GitHub
  ThinkCMF 框架上的任意内容包含漏洞
  ☆36Oct 28, 2019Updated 6 years ago
• jayeshchauhan / SKANDA

  View on GitHub
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Jul 6, 2013Updated 12 years ago
• Bypass007 / Nessus_to_report

  View on GitHub
  Nessus中文报告自动化脚本
  ☆372May 28, 2019Updated 6 years ago