leetCipher / bug-bounty-labsLinks
All the labs in this repository simulate real world bugs I found in the wild
☆188Updated last year
Alternatives and similar repositories for bug-bounty-labs
Users that are interested in bug-bounty-labs are comparing it to the libraries listed below
Sorting:
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆273Updated 3 months ago
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)☆297Updated last year
- ☆248Updated 4 years ago
- My Priv8 Nuclei Templates☆325Updated last year
- i will upload more templates here to share with the comunity.☆552Updated last year
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆536Updated 5 months ago
- Top disclosed reports from HackerOne☆156Updated 4 years ago
- Automated tool for domains & subdomains gathering☆188Updated 2 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆383Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.☆355Updated 3 years ago
- XSS payloads for bypassing WAF. This repository is updating continuously.☆247Updated last year
- Useful "Match and Replace" burpsuite rules☆349Updated last year
- ☆139Updated 3 years ago
- The repo contains all the the notes, slides, and study material for my workshop at DEFCON 32 at the Bug Bounty Village☆171Updated last year
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆374Updated 5 years ago
- Burp extension to create target specific and tailored wordlist from burp history.☆245Updated 3 years ago
- ☆174Updated this week
- ☆301Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆366Updated 2 years ago
- A subdomain fuzzing tool☆168Updated last year
- 10,000 H1 Disclosed Reports☆113Updated last year
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆385Updated 5 months ago
- Never forget where you inject.☆261Updated last week
- Finding XSS during recon☆262Updated 2 years ago
- 40,000+ Nuclei templates for security scanning and detection across diverse web applications and services☆329Updated last year
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- A hacking tool for bug bounties. Sharing and modifying is encouraged!☆241Updated 2 years ago
- A tool to find good RCE☆170Updated 3 years ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆224Updated 10 months ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆215Updated last year