m4ll0k/Awesome-Bugbounty-Writeups external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

m4ll0k/Awesome-Bugbounty-Writeups

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/m4ll0k/Awesome-Bugbounty-Writeups)

Close

m4ll0k / Awesome-Bugbounty-WriteupsView on GitHubMore

• External links
• Readme badge

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

☆44Dec 26, 2020Updated 5 years ago

Alternatives and similar repositories for Awesome-Bugbounty-Writeups

Users that are interested in Awesome-Bugbounty-Writeups are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• m4ll0k / PayloadsAllTheThings

  View on GitHub
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆22Feb 26, 2021Updated 5 years ago
• m4ll0k / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆19Jun 4, 2021Updated 5 years ago
• Fnzer0 / S2-057-poc

  View on GitHub
  S2-057 poc test
  ☆13Aug 31, 2018Updated 7 years ago
• snoopysecurity / fuzzpayloads

  View on GitHub
  Collection of fuzzing payloads and corpus from all around added as sub modules
  ☆15Mar 26, 2026Updated 3 months ago
• satojkovic / ml-algorithms-simple

  View on GitHub
  A collection of machine learning algorithms in python
  ☆14May 11, 2021Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• zherczeg / repan

  View on GitHub
  Regular Expression Pattern Analyzer
  ☆18Aug 9, 2023Updated 2 years ago
• intuit / mastko

  View on GitHub
  MasTKO is a security tool which detects DNS entries associated with AWS’s EC2 servers susceptible to takeover attack and attempts a takeo…
  ☆11Jun 14, 2023Updated 3 years ago
• qeeqbox / falcon

  View on GitHub
  Collection of exploits that were verified by an automated system
  ☆13Jun 17, 2021Updated 5 years ago
• R-s0n / OSWE-Methodology

  View on GitHub
  Blank methodology sheet for the OSWE exam
  ☆13Dec 17, 2021Updated 4 years ago
• rix4uni / xsschecker

  View on GitHub
  xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…
  ☆38Nov 3, 2025Updated 7 months ago
• lucas-santoni / sqli-platform

  View on GitHub
  Training for SQL injections
  ☆36Feb 3, 2019Updated 7 years ago
• EspressoCake / Cobalt_Strike_Ansible

  View on GitHub
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Oct 1, 2021Updated 4 years ago
• Zeyad-Azima / Need-IP

  View on GitHub
  A tool for Pentesters & BugHunters to collect IPs of company, server, Operating System & many more
  ☆13Dec 20, 2022Updated 3 years ago
• Ajqx255 / OSCP

  View on GitHub
  OSCP Prep notes
  ☆14Oct 18, 2020Updated 5 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• drak3hft7 / OSCP-Exam-Report-Template

  View on GitHub
  Template used for my OSCP exam.
  ☆29Aug 9, 2022Updated 3 years ago
• GhostManager / cobalt_sync

  View on GitHub
  Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+
  ☆38Dec 1, 2025Updated 6 months ago
• overgrowncarrot1 / Scripts

  View on GitHub
  ☆19Jan 14, 2026Updated 5 months ago
• rudSarkar / Payloads

  View on GitHub
  Exploits for different vulnerabilities
  ☆12Nov 29, 2021Updated 4 years ago
• 0x3rhy / GetClipboard

  View on GitHub
  Cobalt Strike Get clipboard plugin
  ☆15Aug 11, 2023Updated 2 years ago
• aboul3la / nuclei-templates

  View on GitHub
  Community curated list of templates for the nuclei engine to find security vulnerabilities.
  ☆10Jan 5, 2022Updated 4 years ago
• projectdiscovery / fdmax

  View on GitHub
  Small Helper Library to increase automatically the file descriptors limits for the current process
  ☆25May 12, 2026Updated last month
• JoyGhoshs / NotesYouDontNeed

  View on GitHub
  Some Notes because i am too lazy to search
  ☆13May 10, 2021Updated 5 years ago
• danielhochman / redis-look

  View on GitHub
  Command-line tool to monitor Redis in real-time
  ☆13Apr 25, 2018Updated 8 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• m4ll0k / BBTz

  View on GitHub
  BBT - Bug Bounty Tools (examples💡)
  ☆1,903Apr 5, 2024Updated 2 years ago
• hackedbyagirl / OSCP

  View on GitHub
  OSCP Preperation
  ☆14Aug 12, 2021Updated 4 years ago
• emadshanab / DIR-WORDLISTS

  View on GitHub
  Some wordlists collected form github to all bug bounty hunters.
  ☆46Jul 30, 2021Updated 4 years ago
• shelld3v / flydns

  View on GitHub
  Related subdomains finder
  ☆27May 18, 2022Updated 4 years ago
• hahwul / can-i-protect-xss

  View on GitHub
  Everything about xss protection technology
  ☆15Oct 22, 2019Updated 6 years ago
• santosomar / kev_checker

  View on GitHub
  A basic Python program to check Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog
  ☆24Jun 13, 2023Updated 3 years ago
• appknox / vulnerable-application

  View on GitHub
  Test Android Application.
  ☆20Jan 22, 2016Updated 10 years ago
• six2dez / mobile_pentesting_guide

  View on GitHub
  Mobile Pentesting Guide (WIP)
  ☆24May 13, 2020Updated 6 years ago
• williamknows / SharpHound3

  View on GitHub
  C# Data Collector for the BloodHound Project, Version 3
  ☆35Dec 28, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• JoasASantos / OSWE

  View on GitHub
  ☆17Sep 2, 2021Updated 4 years ago
• blacklanternsecurity / public-dns-servers

  View on GitHub
  A CI/CD-verified list of the internet's known-good public DNS servers (from public-dns.info) Updated weekly!
  ☆38Apr 1, 2026Updated 2 months ago
• cybercdh / bucket-finder

  View on GitHub
  Reads in a list of domains or subdomains and crawls them for references to S3 buckets
  ☆10Nov 21, 2023Updated 2 years ago
• dsopas / bugbounty-cheatsheet

  View on GitHub
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆13Oct 26, 2017Updated 8 years ago
• prodigiousMind / blizzardwrap

  View on GitHub
  BlizzardWrap - A CLI tool for encoding and decoding (supports several formats/algos)
  ☆16Jun 19, 2021Updated 5 years ago
• maverickNerd / wordlists

  View on GitHub
  Wordlists for Fuzzing
  ☆135Oct 12, 2020Updated 5 years ago
• SeaOf0 / CSplugins

  View on GitHub
  黑魔鬼插件
  ☆19Jan 30, 2021Updated 5 years ago