orangetw / bug-bounty-referenceLinks
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
☆53Updated 8 years ago
Alternatives and similar repositories for bug-bounty-reference
Users that are interested in bug-bounty-reference are comparing it to the libraries listed below
Sorting:
- CVE-2018-7600 - Drupal 7.x RCE☆72Updated 7 years ago
- ☆162Updated 7 years ago
- YSOSERIAL Integration with burp suite☆165Updated 2 years ago
- Java serialization brute force attack tool.☆123Updated 7 years ago
- ☆55Updated 8 years ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆53Updated 11 years ago
- ☆70Updated 7 years ago
- Fuzzing for LFI using Burpsuite☆63Updated 8 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script☆139Updated 6 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Updated 8 years ago
- ☆231Updated 9 years ago
- Java deserialization exploitation lab.☆235Updated 6 years ago
- Challenge Sources & Exploits for the 34C3 CTF☆115Updated 7 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 7 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- Creates a SOCK proxy server that transmits data over an SSRF vulnerability☆114Updated 12 years ago
- Facebook Bug Bounties☆102Updated 4 years ago
- Central Repo for Burp extensions☆151Updated 3 years ago
- Burp Suite Extensions☆127Updated 11 years ago
- Script to test if a server is vulnerable to the JetLeak vulnerability☆144Updated 8 years ago
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆82Updated 7 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆138Updated 4 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆43Updated 11 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆46Updated 3 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆77Updated 7 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆123Updated 7 years ago
- ☆84Updated 8 years ago
- PoC or Exp Of Vulnerability☆107Updated 5 years ago