hakluke / bug-bounty-standardsLinks
A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆231Updated 3 years ago
Alternatives and similar repositories for bug-bounty-standards
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below
Sorting:
- Repository to house markdown templates for researchers☆200Updated 2 weeks ago
- Burp extension to create target specific and tailored wordlist from burp history.☆240Updated 3 years ago
- ☆172Updated 4 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆312Updated 7 months ago
- ☆155Updated 2 years ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆146Updated last week
- A Firefox Web Extension to improve the discovery of DOM XSS.☆272Updated 7 months ago
- De-clutter a list of URLs☆342Updated 7 months ago
- ☆152Updated last year
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆192Updated 10 months ago
- ☆97Updated 3 years ago
- List of reporting templates I have used since I started doing BBH.☆306Updated 9 months ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆515Updated 3 months ago
- Useful "Match and Replace" burpsuite rules☆348Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated 2 years ago
- Secret and/or credential patterns used for gf.☆240Updated 2 years ago
- Unofficial documentation for the great tool Param Miner☆178Updated 2 years ago
- ☆136Updated 3 years ago
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆238Updated last year
- ☆145Updated 2 years ago
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆224Updated 3 years ago
- ☆100Updated last year
- Prototype pollution scanner using headless chrome☆218Updated 2 years ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆169Updated 8 months ago
- Burp Extension for easily creating Wordlists☆211Updated 3 years ago
- Automated tool for domains & subdomains gathering☆188Updated last year
- CT Log Scanner☆376Updated 2 months ago
- Advanced Reconnaissance and Web Application Discovery☆82Updated 3 years ago
- List of fresh DNS resolvers updated daily☆108Updated 2 years ago
- IIS shortname scanner written in Go☆335Updated 2 years ago