hakluke / bug-bounty-standardsLinks
A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆234Updated 3 years ago
Alternatives and similar repositories for bug-bounty-standards
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below
Sorting:
- Repository to house markdown templates for researchers☆205Updated last month
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆321Updated 2 months ago
- Burp extension to create target specific and tailored wordlist from burp history.☆247Updated 3 years ago
- ☆174Updated 3 weeks ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆156Updated 3 weeks ago
- Prototype pollution scanner using headless chrome☆219Updated 3 years ago
- ☆139Updated 3 years ago
- ☆156Updated 2 years ago
- ☆100Updated last year
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆195Updated last year
- A Firefox Web Extension to improve the discovery of DOM XSS.☆277Updated 10 months ago
- Scripts and other stuff.☆132Updated last year
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)☆299Updated last year
- Source Code Review resources for Bug Bounty Hunters & Developers. This Repo is updated consistently.☆72Updated 3 years ago
- ☆199Updated last year
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆282Updated 11 months ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆542Updated 6 months ago
- PDF slides☆248Updated 4 years ago
- De-clutter a list of URLs☆347Updated 9 months ago
- Unofficial documentation for the great tool Param Miner☆182Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- Automated tool for domains & subdomains gathering☆189Updated 2 years ago
- My small collection of reports templates (This is a fork of orignal repo from https://github.com/gwen001/BB-datas)☆125Updated last year
- xss development frameworks, with the goal of making payload writing easier.☆147Updated last year
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆230Updated 3 years ago
- A bash script that will automatically install Bug Hunting tools used for recon☆177Updated 2 years ago
- A tool to find good RCE☆169Updated 3 years ago
- Customisable and automated HTTP header injection☆262Updated last year
- ☆146Updated 2 years ago
- Web Application Security Testing Tools☆249Updated last year