Awesome Writeups and POCs
☆560Feb 11, 2025Updated last year
Alternatives and similar repositories for awsome-security-write-ups-and-POCs
Users that are interested in awsome-security-write-ups-and-POCs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆5,604Aug 6, 2023Updated 2 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆4,164Jul 31, 2024Updated last year
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,780Mar 23, 2022Updated 4 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,414Sep 14, 2023Updated 2 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,363Jan 24, 2021Updated 5 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.☆5,561Mar 7, 2026Updated last month
- SSRF (Server Side Request Forgery) testing resources☆2,486Oct 12, 2024Updated last year
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆107Feb 11, 2019Updated 7 years ago
- Just some public notes that can be useful and i want let the world knows.☆90Oct 18, 2020Updated 5 years ago
- A curated list of amazingly awesome Burp Extensions☆3,389Feb 17, 2026Updated last month
- Collection of methodology and test case for various web vulnerabilities.☆7,067Jun 25, 2025Updated 9 months ago
- Hunting Bugs for Fun and Profit☆276Jul 29, 2020Updated 5 years ago
- Ressources for bug bounty hunting☆1,913Dec 1, 2022Updated 3 years ago
- Fuzzing Payloads to Assist in Web Application Testing.☆166Jun 6, 2019Updated 6 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Top disclosed reports from HackerOne☆5,622Mar 30, 2026Updated last week
- A collection of custom security tools for quick needs.☆3,287May 1, 2023Updated 2 years ago
- Tools and resources for web app hacking. The payloads.txt documents are a must have for your Burpsuite intruder payload armory. They've h…☆28Jun 10, 2019Updated 6 years ago
- A big list of Android Hackerone disclosed reports and other resources.☆1,676Sep 10, 2025Updated 6 months ago
- A curated list of amazingly bug bounty tips from security researchers around the world.☆105Mar 14, 2019Updated 7 years ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆3,095Jul 29, 2024Updated last year
- Hacking Facebook for fun and profit: It’s not that hard, apparently (exclusive)☆62Jul 2, 2019Updated 6 years ago
- Facebook Bug Bounties☆106Feb 24, 2021Updated 5 years ago
- List of Awesome Asset Discovery Resources☆2,457Jan 22, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- BBT - Bug Bounty Tools (examples💡)☆1,886Apr 5, 2024Updated 2 years ago
- All about bug bounty (bypasses, payloads, and etc)☆6,685Sep 8, 2023Updated 2 years ago
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,181Feb 8, 2024Updated 2 years ago
- List of Awesome Red Teaming Resources☆7,878Dec 28, 2023Updated 2 years ago
- Tools & Interesting Things for RedTeam Ops☆2,265Feb 10, 2026Updated last month
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,029Feb 5, 2021Updated 5 years ago
- Tools and datas related to Bug Bounty.☆236Apr 20, 2022Updated 3 years ago
- Web App bug hunting☆576Nov 26, 2025Updated 4 months ago
- The Bug Hunters Methodology☆4,273Aug 1, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆749Apr 12, 2022Updated 3 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,912Sep 27, 2021Updated 4 years ago
- Awesome XSS stuff☆5,094Oct 30, 2024Updated last year
- An entry level resource to learning bug bounty.☆28Apr 11, 2018Updated 7 years ago
- Azure and AWS Attacks☆1,116Nov 25, 2022Updated 3 years ago
- Mind-Maps of Several Things☆2,634Jun 29, 2023Updated 2 years ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,618Feb 8, 2025Updated last year