fr34k8 / security_whitepapersLinks
Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
☆62Updated 8 years ago
Alternatives and similar repositories for security_whitepapers
Users that are interested in security_whitepapers are comparing it to the libraries listed below
Sorting:
- Notes I've taken while working through various web app pentesting labs.☆91Updated 7 years ago
- A curated list of amazingly bug bounty tips from security researchers around the world.☆104Updated 6 years ago
- Collection of Bug Bounty Tips☆65Updated 6 years ago
- Burp Suite extension to discover assets from HTTP response.☆228Updated 11 months ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆135Updated 6 years ago
- A tool to find sensitive keys and passwords in Travis logs☆141Updated 4 years ago
- Resolve and quickly portscan a list of (sub)domains.☆88Updated 9 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆61Updated 6 years ago
- A collection of scripts to extend Burp Suite☆142Updated 6 years ago
- Sample vulnerable code and its exploit code☆190Updated 4 years ago
- Facebook Bug Bounties☆105Updated 4 years ago
- Fuzzing for LFI using Burpsuite☆66Updated 9 years ago
- A XSS mind map ;)☆57Updated 9 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 5 years ago
- Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)☆146Updated 4 years ago
- Finds all public bug reports on reported on Hackerone☆95Updated 10 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆91Updated 6 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆154Updated 5 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆113Updated 6 years ago
- Manual JavaScript Linting is a Bug☆48Updated 4 years ago
- subdomain bruteforce list☆102Updated last year
- An entry level resource to learning bug bounty.☆28Updated 7 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆154Updated 4 years ago
- Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.☆100Updated 6 months ago
- Resources I consider useful for security research of web applications☆60Updated 5 years ago
- A Python script to parse net blocks & domain names from SPF record☆85Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆63Updated 3 years ago
- Practice hacking JWT tokens☆116Updated 3 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆152Updated 3 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 7 years ago
