dwisiswant0 / awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
β2,798Updated 7 months ago
Alternatives and similar repositories for awesome-oneliner-bugbounty:
Users that are interested in awesome-oneliner-bugbounty are comparing it to the libraries listed below
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. π‘οΈβοΈπ§β1,740Updated 9 months ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,779Updated 11 months ago
- Rockyou for web fuzzingβ2,740Updated 3 weeks ago
- This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.β1,644Updated 2 years ago
- Ressources for bug bounty huntingβ1,800Updated 2 years ago
- Payload Arsenal for Pentration Tester and Bug Bounty Huntersβ898Updated last year
- A repository that includes all the important wordlists used while bug hunting.β1,270Updated 2 years ago
- A collection of hacks and one-off scriptsβ2,240Updated last week
- β1,666Updated this week
- Penetration tests guide based on OWASP including test cases, resources and examples.β2,559Updated 3 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ2,662Updated 9 months ago
- Fetch all the URLs that the Wayback Machine knows about for a domainβ3,786Updated 10 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug huβ¦β2,111Updated 8 months ago
- β1,070Updated 2 weeks ago
- XSS payloads designed to turn alert(1) into P1β1,347Updated last year
- A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.β894Updated last year
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!β1,973Updated this week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,028Updated this week
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript filesβ2,128Updated 9 months ago
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for β¦β3,263Updated this week
- Collection of methodology and test case for various web vulnerabilities.β6,311Updated last week
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokensβ¦β4,402Updated 2 months ago
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,073Updated last month
- This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 β¦β2,315Updated 4 months ago
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.β1,192Updated last month
- Find domains and subdomains related to a given domainβ3,195Updated 9 months ago
- Take a list of domains and probe for working HTTP and HTTPS serversβ2,967Updated 9 months ago
- Useful Google Dorks for WebSecurity and Bug Bountyβ1,075Updated 11 months ago
- Subdomain takeover vulnerability checkerβ1,158Updated 6 months ago
- A curated list of amazingly awesome Burp Extensionsβ3,101Updated last month