🐛 A list of writeups from the MSRC (Microsoft) Bug Bounty program
☆36Oct 29, 2025Updated 8 months ago
Alternatives and similar repositories for awesome-msrc-writeups
Users that are interested in awesome-msrc-writeups are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Android webviews and securiy☆25Sep 18, 2025Updated 9 months ago
- JSSCM detects expired domains for Stored XSS exploitation during browsing.☆57Apr 3, 2025Updated last year
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆14Nov 1, 2024Updated last year
- PoC List☆10Sep 4, 2022Updated 3 years ago
- ☆35Jan 8, 2026Updated 5 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- PostScript examples useful for attacking Ghostscript.☆12Aug 1, 2024Updated last year
- Keep track of changes in website with WEBSY☆35May 22, 2023Updated 3 years ago
- BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!☆30Feb 10, 2024Updated 2 years ago
- 申明:仅供教学演示,禁用非法、未授权等进行钓鱼,后果自负。☆12May 21, 2024Updated 2 years ago
- InfiniteWP Client < 1.9.4.5 - Authentication Bypass☆21Jul 28, 2021Updated 4 years ago
- ☆51Apr 30, 2026Updated 2 months ago
- OSS存储桶的漏洞扫描工具,目前支持阿里云、腾讯云、华为云、aws☆67Nov 5, 2025Updated 7 months ago
- ☆38Aug 5, 2025Updated 10 months ago
- ☆78Nov 4, 2025Updated 7 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Script to automate bypassing 403 forbidden status code☆25Jun 18, 2025Updated last year
- 利用Gemini分析前端js文件中的安全漏洞☆38Jun 30, 2025Updated last year
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆51Feb 17, 2023Updated 3 years ago
- ☆38Aug 12, 2020Updated 5 years ago
- Active monitoring bug bounty programs tool☆49Jan 21, 2026Updated 5 months ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆118Feb 13, 2026Updated 4 months ago
- ☆49Feb 27, 2026Updated 4 months ago
- ☆24Apr 10, 2023Updated 3 years ago
- Blank methodology sheet for the OSWE exam☆13Dec 17, 2021Updated 4 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Standardised setup for researching WordPress plugin- and theme vulnerabilities.☆32Jun 19, 2026Updated last week
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.☆28Jan 13, 2025Updated last year
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…☆129Sep 12, 2025Updated 9 months ago
- uforall is a fast url crawler this tool crawl all URLs number of different sources, alienvault,WayBackMachine,urlscan,commoncrawl☆53Nov 3, 2025Updated 7 months ago
- Guide to SSRF☆80Oct 10, 2023Updated 2 years ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆70Nov 19, 2024Updated last year
- Web Application Attack☆14Dec 16, 2019Updated 6 years ago
- Javascript file change monitoring☆21Jun 22, 2026Updated last week
- ☆176Mar 30, 2026Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 🎉 CVE Monitor v1.0☆27Jun 30, 2025Updated last year
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆60Mar 2, 2022Updated 4 years ago
- Results from analyzing data gathered from 1.6 billion subdomains☆33Oct 15, 2024Updated last year
- Mine URLs from Browser's Heap Snapshot for fun and profit☆65Aug 9, 2023Updated 2 years ago
- XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characte…☆54Jan 16, 2026Updated 5 months ago
- ☆27Feb 7, 2023Updated 3 years ago
- EvenBetterExtensions allows you to quicky install and keep updated Caido extensions.☆22Sep 26, 2024Updated last year