fuzz-security/Resources-for-Beginner-Bug-Bounty-Hunters external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

fuzz-security/Resources-for-Beginner-Bug-Bounty-Hunters

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/fuzz-security/Resources-for-Beginner-Bug-Bounty-Hunters)

Close

fuzz-security / Resources-for-Beginner-Bug-Bounty-HuntersView on GitHubMore

• External links
• Readme badge

A list of resources for those interested in getting started in bug bounties

☆13Jun 18, 2020Updated 5 years ago

Alternatives and similar repositories for Resources-for-Beginner-Bug-Bounty-Hunters

Users that are interested in Resources-for-Beginner-Bug-Bounty-Hunters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• fuzz-security / MobileApp-Pentest-Cheatsheet

  View on GitHub
  The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…
  ☆71May 8, 2020Updated 6 years ago
• WoodenKlaas / CVE-2021-44521

  View on GitHub
  Automated PoC of CVE-2021-44521
  ☆10Feb 24, 2022Updated 4 years ago
• Abdulrahman-Kamel / dpfilter

  View on GitHub
  BugBounty , sort and delete duplicates param value without missing original value
  ☆22Jul 31, 2021Updated 4 years ago
• eslamedhat / XDomain

  View on GitHub
  Auto powerful subdomains scanner - Auto check live subdomains
  ☆18Jul 5, 2020Updated 5 years ago
• gsiddharth29 / Threat-Hunting

  View on GitHub
  Threat Hunt Investigation Methodology and Procedure
  ☆15Jul 11, 2022Updated 3 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• arg3t / massurl

  View on GitHub
  A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau
  ☆12Jun 28, 2021Updated 4 years ago
• fuzz-security / hackerone-reports

  View on GitHub
  Top disclosed reports from HackerOne
  ☆10Jun 9, 2020Updated 5 years ago
• ManasHarsh / Bug-bounty-methodology

  View on GitHub
  ☆27Jan 25, 2020Updated 6 years ago
• Al1ex / Pentest-Command

  View on GitHub
  Pentest-Command
  ☆20Nov 10, 2021Updated 4 years ago
• RoberMB / SuperNES

  View on GitHub
  SuperNES - Super Nmap Easy Scanner
  ☆10Oct 2, 2018Updated 7 years ago
• fuzz-security / Active-Directory-Exploitation-Cheat-Sheet

  View on GitHub
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆50Jun 23, 2020Updated 5 years ago
• segura2010 / apk-yara-checker

  View on GitHub
  'apk-yara-checker' is a little CLI tool written in Rust to check Yara rules against a folder of APK files.
  ☆16Jul 6, 2024Updated last year
• B-and-w-sec / shell-scripts

  View on GitHub
  This repo contains scripts i used while bug bounty.
  ☆16Nov 4, 2020Updated 5 years ago
• zapstiko / wordlists

  View on GitHub
  All Type of Payloads
  ☆141Mar 26, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• seyyid-bh / DEFCON28

  View on GitHub
  ☆13Aug 11, 2020Updated 5 years ago
• naufalan / Web-App-Methodology

  View on GitHub
  Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testi…
  ☆13Oct 23, 2021Updated 4 years ago
• PacktPublishing / Learn-Website-Hacking-Penetration-Testing-From-Scratch

  View on GitHub
  Learn Website Hacking / Penetration Testing From Scratch, published by Packt
  ☆22Jan 30, 2023Updated 3 years ago
• sahad-mk / Fireprint

  View on GitHub
  FirePrint is a security tool for finding misconfigured Firebase realtime databases in Android or iOS applications.
  ☆22Apr 4, 2024Updated 2 years ago
• B1anda0 / CVE-2020-8209

  View on GitHub
  该脚本为Citrix XenMobile 目录遍历漏洞（CVE-2020-8209）批量检测脚本。
  ☆31Dec 7, 2020Updated 5 years ago
• XiaoliChan / Fastjson-ForwardShell

  View on GitHub
  Breaking fastjson with forward shell
  ☆23Sep 1, 2022Updated 3 years ago
• emadshanab / Burp-Bounty-free-Profiles-Collection

  View on GitHub
  ☆45Jun 5, 2021Updated 4 years ago
• oneplus-x / The-Bug-Hunters-Methodology

  View on GitHub
  Welcome! This repo is a conglomeration of tips, tricks, tools, and data analysis to use while doing web application security assessments,…
  ☆14Jan 13, 2019Updated 7 years ago
• momika233 / Oracle-E-Business_Login

  View on GitHub
  ☆17May 21, 2022Updated 3 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• brightprogrammer / MisraOS

  View on GitHub
  A Modern Operating System Written in C++ From Scratch!
  ☆14Jan 30, 2022Updated 4 years ago
• kavinvalli / clerk-auth

  View on GitHub
  clerk-auth
  ☆14Apr 27, 2023Updated 3 years ago
• spuqe / firebase

  View on GitHub
  Firebase database finder.
  ☆13Dec 30, 2020Updated 5 years ago
• emadshanab / Red-Team-Resources-collection

  View on GitHub
  ☆76Jun 5, 2021Updated 4 years ago
• anil-sidhu / reactjs

  View on GitHub
  small code example of react js
  ☆15Oct 2, 2020Updated 5 years ago
• righettod / log4shell-analysis

  View on GitHub
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆31Jan 22, 2022Updated 4 years ago
• e11i0t4lders0n / Bugbounty-Resources

  View on GitHub
  ☆88May 27, 2021Updated 4 years ago
• FDlucifer / mybb_1832_LFI_RCE

  View on GitHub
  MyBB 1.8.32 - Chained LFI Remote Code Execution (RCE) (Authenticated) python exploit script...
  ☆14Oct 17, 2023Updated 2 years ago
• U2FsdGVkX1 / vps2suse

  View on GitHub
  Install openSUSE on your VPS, no matter what the current OS is
  ☆29May 23, 2025Updated 11 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• muneebwanee / SubScanner

  View on GitHub
  An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.
  ☆12Dec 11, 2020Updated 5 years ago
• emadshanab / Nmap-NSE-scripts-collection

  View on GitHub
  ☆177Oct 26, 2025Updated 6 months ago
• theLSA / burp-sensitive-param-extractor

  View on GitHub
  burpsuite extension for check and extract sensitive request parameter
  ☆116Nov 29, 2020Updated 5 years ago
• c3rb3ru5d3d53c / c3rb3ru5d3d53c.github.io

  View on GitHub
  My Malware Blog
  ☆21Feb 4, 2024Updated 2 years ago
• JoasASantos / Cybersecurity-Certifications-Guide

  View on GitHub
  ☆21Jul 26, 2022Updated 3 years ago
• e11i0t4lders0n / Web-Application-Pentest-Checklist

  View on GitHub
  ☆535Jul 16, 2021Updated 4 years ago
• emadshanab / Adobe-Experience-Manager

  View on GitHub
  ☆34Jun 23, 2021Updated 4 years ago