orangetw / bug-bounty-referenceLinks
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
☆56Updated 8 years ago
Alternatives and similar repositories for bug-bounty-reference
Users that are interested in bug-bounty-reference are comparing it to the libraries listed below
Sorting:
- YSOSERIAL Integration with burp suite☆166Updated 2 years ago
- Java serialization brute force attack tool.☆123Updated 8 years ago
- CVE-2018-7600 - Drupal 7.x RCE☆72Updated 7 years ago
- ☆162Updated 7 years ago
- ☆232Updated 9 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆296Updated 2 years ago
- Central Repo for Burp extensions☆151Updated 3 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆140Updated 6 years ago
- Script to test if a server is vulnerable to the JetLeak vulnerability☆144Updated 9 years ago
- ☆56Updated 8 years ago
- Security checks pack for Burp Suite☆139Updated 7 years ago
- Spring messaging STOMP protocol RCE☆113Updated 7 years ago
- Tool for CVE-2018-16323☆81Updated 6 years ago
- Java deserialization exploitation lab.☆235Updated 6 years ago
- Utils☆273Updated 9 years ago
- Web Fuzzing Discovery and Attack Pattern Database☆114Updated 7 years ago
- CVE-2018-7600 Drupal RCE☆116Updated 7 years ago
- 各种漏洞poc、Exp的收集或编写☆33Updated 9 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Updated 9 years ago
- Cross Site Scripting Payloads -- Variations☆72Updated 5 months ago
- Happy Hunting☆138Updated 6 years ago
- CVE-2018-2893-PoC☆103Updated 6 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆120Updated 5 years ago
- Collection of CTF challenges I made☆52Updated 9 months ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Updated 7 years ago
- CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script☆139Updated 7 years ago
- A Java serializer in JavaScript☆81Updated 7 years ago
- XXE Out of Band Server.☆172Updated 2 years ago
- HTTP.ninja☆151Updated 2 years ago
- Apache Tomcat Remote Code Execution on Windows☆187Updated 5 years ago