sabir789 / BugBountyTips
Welcome to the 403 and 401 Bypass Techniques and Bug Bounty Tips repository! This repo is a collection of methods and strategies to bypass 403 and 401 HTTP response codes, along with various tips and tricks for bug bounty hunting. If you're passionate about finding vulnerabilities and improving security, this is the right place for you!
☆12Updated 2 months ago
Alternatives and similar repositories for BugBountyTips:
Users that are interested in BugBountyTips are comparing it to the libraries listed below
- ☆16Updated last year
- This tool allows you to find ssti vulnerability with ease!☆19Updated 2 years ago
- ☆27Updated 9 months ago
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆21Updated 4 months ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆27Updated 7 months ago
- ☆22Updated last year
- Url scrapper or extractor from alienvault☆31Updated last week
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated 7 months ago
- Process URLs and remove duplicate query parameters.☆28Updated 11 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆42Updated 2 months ago
- A simple plugin to export JS files from one or multiple targets☆40Updated last year
- Bypass Reset Password Code Lead to Account Takeover☆22Updated 5 months ago
- [CVE-2024-4956] Nexus Repository Manager 3 Unauthenticated Path Traversal Bulk Scanner☆14Updated 5 months ago
- ☆14Updated 11 months ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆31Updated last year
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆39Updated 4 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆29Updated 7 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurity☆23Updated 2 years ago
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Updated last year
- FireHawk: The Elite Firebase Security Testing Utility☆20Updated 9 months ago
- script python to check url list via cookies and Authorization☆19Updated 2 years ago
- In this repo, I have created a subdomain enumeration function that grab subdomains in deep.☆22Updated last year
- Unauthorized Access to Metadata and User Data like CTF☆26Updated 3 months ago
- A Burp Extension that makes it easier to view all script code on a Response.☆14Updated last year
- Bxss Sniper: A web application penetration testing tool for Blind XSS detection☆19Updated last year
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆39Updated 10 months ago
- A BurpSuite extension for vulnerability Scanning☆25Updated last year