A list of resources for those interested in getting started in bug bounties
☆13Jun 18, 2020Updated 5 years ago
Alternatives and similar repositories for Resources-for-Beginner-Bug-Bounty-Hunters
Users that are interested in Resources-for-Beginner-Bug-Bounty-Hunters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆71May 8, 2020Updated 5 years ago
- Automated PoC of CVE-2021-44521☆10Feb 24, 2022Updated 4 years ago
- BugBounty , sort and delete duplicates param value without missing original value☆22Jul 31, 2021Updated 4 years ago
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 3 years ago
- A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau☆12Jun 28, 2021Updated 4 years ago
- Deploy open-source AI quickly and easily - Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Top disclosed reports from HackerOne☆10Jun 9, 2020Updated 5 years ago
- ☆27Jan 25, 2020Updated 6 years ago
- Pentest-Command☆20Nov 10, 2021Updated 4 years ago
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆50Jun 23, 2020Updated 5 years ago
- 'apk-yara-checker' is a little CLI tool written in Rust to check Yara rules against a folder of APK files.☆16Jul 6, 2024Updated last year
- This repo contains scripts i used while bug bounty.☆16Nov 4, 2020Updated 5 years ago
- All Type of Payloads☆142Mar 26, 2024Updated 2 years ago
- Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testi…☆13Oct 23, 2021Updated 4 years ago
- FirePrint is a security tool for finding misconfigured Firebase realtime databases in Android or iOS applications.☆22Apr 4, 2024Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- 该脚本为Citrix XenMobile 目录遍历漏洞(CVE-2020-8209)批量检测脚本。☆31Dec 7, 2020Updated 5 years ago
- Breaking fastjson with forward shell☆23Sep 1, 2022Updated 3 years ago
- ☆45Jun 5, 2021Updated 4 years ago
- Welcome! This repo is a conglomeration of tips, tricks, tools, and data analysis to use while doing web application security assessments,…☆14Jan 13, 2019Updated 7 years ago
- ☆17May 21, 2022Updated 3 years ago
- A Modern Operating System Written in C++ From Scratch!☆14Jan 30, 2022Updated 4 years ago
- ☆76Jun 5, 2021Updated 4 years ago
- Contains all my research and content produced regarding the log4shell vulnerability☆31Jan 22, 2022Updated 4 years ago
- ☆88May 27, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- MyBB 1.8.32 - Chained LFI Remote Code Execution (RCE) (Authenticated) python exploit script...☆14Oct 17, 2023Updated 2 years ago
- Install openSUSE on your VPS, no matter what the current OS is☆29May 23, 2025Updated 10 months ago
- An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.☆12Dec 11, 2020Updated 5 years ago
- burpsuite extension for check and extract sensitive request parameter☆116Nov 29, 2020Updated 5 years ago
- ☆21Jul 26, 2022Updated 3 years ago
- ☆535Jul 16, 2021Updated 4 years ago
- ☆34Jun 23, 2021Updated 4 years ago
- Subdomain Enumeration Wordlist. 8956437 unique words. Updated.☆75May 23, 2020Updated 5 years ago
- Mass querying whois records☆28Dec 28, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- CVE-2020-25223☆11Sep 13, 2021Updated 4 years ago
- ☆12Updated this week
- black Ip lists, dorks-collection☆17Apr 1, 2026Updated 2 weeks ago
- fastjson rce env based on springboot☆40Nov 25, 2021Updated 4 years ago
- ☆13Oct 3, 2023Updated 2 years ago
- Complite Web Application Penetration Testing☆28Jul 9, 2021Updated 4 years ago
- Zoho ManageEngine Desktop Central CVEs☆15Oct 5, 2020Updated 5 years ago