sabir789 / BugBountyTipsLinks
Welcome to the 403 and 401 Bypass Techniques and Bug Bounty Tips repository! This repo is a collection of methods and strategies to bypass 403 and 401 HTTP response codes, along with various tips and tricks for bug bounty hunting. If you're passionate about finding vulnerabilities and improving security, this is the right place for you!
☆18Updated 8 months ago
Alternatives and similar repositories for BugBountyTips
Users that are interested in BugBountyTips are comparing it to the libraries listed below
Sorting:
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆61Updated 6 months ago
- Grep subdomains from web pages.☆44Updated 7 months ago
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆30Updated 10 months ago
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆64Updated last year
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆35Updated last week
- Bypass Reset Password Code Lead to Account Takeover☆26Updated last year
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆33Updated last year
- A passive way to find backups/ sensitive information.☆87Updated 2 months ago
- An automated bug hunting tool for comprehensive reconnaissance, including subdomain enumeration, port scanning, vulnerability detection, …☆12Updated 2 months ago
- Tools and methods that I personally use for Recon and Exploitations☆44Updated 4 months ago
- ☆43Updated 11 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆98Updated 2 months ago
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆45Updated 5 months ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆66Updated last year
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆33Updated 2 years ago
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆42Updated 10 months ago
- ☆43Updated last year
- ☆24Updated last year
- Modern real world bug bounty payloads and exploitation techniques with may earn you some $$$.☆26Updated last year
- ☆23Updated 11 months ago
- Private Nuclei Templates☆100Updated 6 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆47Updated 9 months ago
- TimeVault is a specialized automated tool designed to detect potential information disclosure vulnerabilities in web applications by leve…☆39Updated 7 months ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆33Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆85Updated 8 months ago
- ☆68Updated 2 years ago
- ☆35Updated 9 months ago
- subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…☆50Updated 9 months ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆68Updated 9 months ago
- Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️☆35Updated last year