pen4uin / bug-bounty-writeups

Related projects: ⓘ

• aufzayed / bugbounty
  Bugbounty Resources
  ☆530Updated last year
• 0x0021h / expbox
  ☆265Updated this week
• mdsecresearch / BurpSuiteSharpener
  ☆513Updated last year
• Walidhossain010 / WAF-bypass-XSS-payloads
  ☆354Updated this week
• NagliNagli / Shockwave-OSS
  ☆738Updated 2 months ago
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆344Updated last month
• Raghavd3v / CRLFsuite
  The most powerful CRLF injection (HTTP Response Splitting) scanner.
  ☆544Updated 11 months ago
• fullhunt / spring4shell-scan
  A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
  ☆655Updated 2 years ago
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆535Updated last year
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆212Updated 3 weeks ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆168Updated 8 months ago
• 0xCGonzalo / Golden-Guide-for-Pentesting
  Golden Guide
  ☆468Updated 7 months ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆548Updated 3 years ago
• CsEnox / CVE-2022-2992
  Authenticated Remote Command Execution in Gitlab via GitHub import
  ☆219Updated last year
• tangxiaofeng7 / BurpLog4j2Scan
  Burpsuite extension for log4j2rce
  ☆28Updated 2 years ago
• hakivvi / CVE-2022-29464
  WSO2 RCE (CVE-2022-29464) exploit and writeup.
  ☆365Updated 2 years ago
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆851Updated 6 months ago
• thevillagehacker / Bug-Hunting-Arsenal
  The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down her…
  ☆179Updated last week
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆481Updated 2 years ago
• Y000o / Payloads_xss_sql_bypass
  ☆179Updated 10 months ago
• Mr-xn / BLACKHAT_USA2022
  BLACKHAT USA2022 PDF Public
  ☆490Updated 2 years ago
• silentsignal / burp-log4shell
  Log4Shell scanner for Burp Suite
  ☆481Updated 11 months ago
• Nwqda / CVE-2022-26134
  ☆236Updated this week
• BobTheShoplifter / Spring4Shell-POC
  Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
  ☆357Updated last year
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆701Updated 3 years ago
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆230Updated 2 years ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆465Updated 8 months ago
• CoreyD97 / BurpCustomizer
  Because just a dark theme wasn't enough!
  ☆546Updated 2 years ago
• ARPSyndicate / cvemon
  Monitoring exploits & references for CVEs
  ☆228Updated 9 months ago
• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆258Updated 4 years ago