brosck / BugBountyTricks
「🐞」Bug Bounty Tricks
☆38Updated last year
Alternatives and similar repositories for BugBountyTricks:
Users that are interested in BugBountyTricks are comparing it to the libraries listed below
- This tool allows you to find ssti vulnerability with ease!☆19Updated 2 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆34Updated last year
- XSS Finder Via SSTI☆54Updated last year
- A Complete SSRF (Server Side Request Forgery) Scanner.☆31Updated last month
- Script for Bug Bounty☆28Updated 3 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆39Updated 3 years ago
- ☆43Updated last year
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 4 years ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆31Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- Script that download 37+ open source nuclei templates☆43Updated 2 years ago
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆44Updated 2 years ago
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆21Updated 4 months ago
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆18Updated 2 years ago
- Tool for testing reflections in the HTTP responses☆60Updated last year
- Brute Force subdomains with a list of custom DNS records.☆13Updated 2 years ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆30Updated last year
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆35Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 4 months ago
- Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers☆26Updated 3 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- ☆53Updated 2 years ago
- ☆37Updated last year
- ☆68Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆44Updated last year
- Resolvers updated daily for reconftw☆48Updated 2 years ago
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆58Updated 2 years ago