hakluke / bug-bounty-standards
A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆231Updated 3 years ago
Alternatives and similar repositories for bug-bounty-standards:
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below
- Burp extension to create target specific and tailored wordlist from burp history.☆237Updated 3 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆308Updated 4 months ago
- De-clutter a list of URLs☆330Updated 4 months ago
- ☆152Updated 2 years ago
- ☆100Updated last year
- List of reporting templates I have used since I started doing BBH.☆289Updated 6 months ago
- ☆168Updated last month
- Unofficial documentation for the great tool Param Miner☆178Updated 2 years ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆141Updated 2 weeks ago
- ☆139Updated 2 years ago
- Web Application Security Testing Tools☆241Updated last year
- Prototype pollution scanner using headless chrome☆216Updated 2 years ago
- ☆97Updated 2 years ago
- A reverse whois tool based on Whoxy API.☆165Updated last year
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆220Updated 2 years ago
- Whitebox source code review cheatsheet (Based on AWAE syllabus)☆130Updated 3 years ago
- Repository to house markdown templates for researchers☆197Updated 3 weeks ago
- List of fresh DNS resolvers updated daily☆109Updated 2 years ago
- Useful "Match and Replace" burpsuite rules☆342Updated last year
- ☆150Updated last year
- IIS shortname scanner written in Go☆328Updated 2 years ago
- My small collection of reports templates (This is a fork of orignal repo from https://github.com/gwen001/BB-datas)☆124Updated last year
- PDF slides☆247Updated 3 years ago
- Secret and/or credential patterns used for gf.☆240Updated 2 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆497Updated 3 weeks ago
- ☆131Updated 3 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆191Updated 7 months ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆132Updated 6 months ago
- xss-payload-list☆116Updated 8 months ago
- Real world bug bounty wordlists☆111Updated last year