oneplus-x / The-Bug-Hunters-Methodology
Welcome! This repo is a conglomeration of tips, tricks, tools, and data analysis to use while doing web application security assessments, and more specifically towards bug hunting in bug bounties.
☆13Updated 6 years ago
Alternatives and similar repositories for The-Bug-Hunters-Methodology:
Users that are interested in The-Bug-Hunters-Methodology are comparing it to the libraries listed below
- commands☆27Updated 4 years ago
- Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testi…☆13Updated 3 years ago
- S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners☆27Updated 3 years ago
- An Automation Tool Written in Python which uses Twitter and GitHub API☆16Updated 3 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆48Updated 2 years ago
- Cool resources and content for bug bounty hunting.☆19Updated 3 years ago
- Basic Bash Script to scrape all subdomains from crtsh in a single run☆19Updated 2 years ago
- basic bbtools , buggy , not recommended to use☆34Updated 3 months ago
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆48Updated 2 years ago
- Cool HackerOne Reports☆20Updated 2 years ago
- Stuff for bug bounty☆28Updated 2 years ago
- Automated blind-xss search for Burp Suite☆23Updated 3 years ago
- A very simple AEM detector written in rust.🦀☆19Updated last year
- Mini recon script to identify the links and sensitive information from a particular link☆19Updated 4 years ago
- Magic Header Blind Xss tool (deliver blind xss payloads in request headers).☆27Updated 3 years ago
- IIS shortname scanner + bruteforce☆52Updated last year
- ☆21Updated 2 years ago
- 🎯 SQL Injection Payload List☆10Updated 3 years ago
- Bug Bounty Recon wordlist Generator☆21Updated 4 years ago
- Alternative to XSS Hunter for blind XSS.☆51Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Updated last year
- ☆50Updated 4 years ago
- Automation for Open Threat Exchange☆23Updated last year
- ☆12Updated 2 years ago
- Fast Bug Bounty Script☆37Updated 3 months ago
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆58Updated 2 years ago
- Check List☆79Updated 2 years ago
- This is GitHub_Dorks and some tips i collect from different resources.Recon_Api is tip when you find token or api without knowing what to…☆21Updated 3 years ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆39Updated last year