brosck / BugBountyTricks
「🐞」Bug Bounty Tricks
☆35Updated last year
Related projects ⓘ
Alternatives and complementary repositories for BugBountyTricks
- ☆43Updated last year
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆42Updated 8 months ago
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆35Updated last year
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆27Updated 11 months ago
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆21Updated 2 weeks ago
- This tool allows you to find ssti vulnerability with ease!☆19Updated 2 years ago
- ☆31Updated 2 years ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆31Updated last year
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆31Updated 11 months ago
- CRLF Bug scanner for WebPentesters and Bugbounty Hunters☆41Updated last year
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆42Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆18Updated last year
- Script that download 37+ open source nuclei templates☆43Updated 2 years ago
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆58Updated 2 years ago
- Authorization-Nuclei-Templates☆37Updated 2 months ago
- Host Header Vulnerability Scanner Automated Tool☆23Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurity☆22Updated 2 years ago
- ☆21Updated 2 years ago
- ☆68Updated last year
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆39Updated 2 years ago
- Check if domain has bug bounty program or not☆29Updated last year
- ☆42Updated last year
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆39Updated last year
- XSS Finder Via SSTI☆54Updated last year
- Bypass Reset Password Code Lead to Account Takeover☆21Updated 2 months ago
- I collected it to help the bug hunter get a reward☆55Updated 2 years ago
- Tool for testing reflections in the HTTP responses☆60Updated last year