Alternatives and similar repositories for bug-bounty-reference

Users that are interested in bug-bounty-reference are comparing it to the libraries listed below

• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆166Updated 2 years ago
• firefart / CVE-2018-7600
  CVE-2018-7600 - Drupal 7.x RCE
  ☆72Updated 7 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 8 years ago
• attackercan / cpp-sql-fuzzer
  ☆58Updated 9 years ago
• strozfriedberg / xxe-recursive-download
  ☆231Updated 10 years ago
• GDSSecurity / Jetleak-Testing-Script
  Script to test if a server is vulnerable to the JetLeak vulnerability
  ☆144Updated 9 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆140Updated 6 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 8 years ago
• NetSPI / Burp-Extensions
  Central Repo for Burp extensions
  ☆151Updated 4 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆297Updated 2 years ago
• ttffdd / XBadManners
  Tool for CVE-2018-16323
  ☆82Updated 6 years ago
• CaledoniaProject / CVE-2018-1270
  Spring messaging STOMP protocol RCE
  ☆113Updated 7 years ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆235Updated 6 years ago
• yandex / burp-molly-pack
  Security checks pack for Burp Suite
  ☆139Updated 7 years ago
• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆138Updated 6 years ago
• yolosec / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆34Updated 9 years ago
• tgianko / deemon
  Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…
  ☆75Updated 7 years ago
• ONsec-Lab / scripts
  Utils
  ☆274Updated 9 years ago
• GrrrDog / ZeroNights-HackQuest-2016
  2 web tasks from ZeroNights HackQuest 2016
  ☆50Updated 8 years ago
• nixawk / fuzzdb
  Web Fuzzing Discovery and Attack Pattern Database
  ☆113Updated 7 years ago
• orangetw / Some-PoC-oR-ExP
  各种漏洞poc、Exp的收集或编写
  ☆32Updated 9 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Updated 7 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆140Updated 7 years ago
• mbechler / serjs
  A Java serializer in JavaScript
  ☆81Updated 7 years ago
• jjf012 / PassiveScanner
  a passive scanner based on Mitmproxy and Arachni
  ☆110Updated 8 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆120Updated 5 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆184Updated 5 years ago
• munsiwoo / ctf-web-prob
  Collection of CTF challenges I made
  ☆52Updated 11 months ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆132Updated 3 years ago
• luc10 / struts-rce-cve-2017-9805
  CVE 2017-9805
  ☆60Updated 5 years ago