sabir789 / BugBountyTipsLinks
Welcome to the 403 and 401 Bypass Techniques and Bug Bounty Tips repository! This repo is a collection of methods and strategies to bypass 403 and 401 HTTP response codes, along with various tips and tricks for bug bounty hunting. If you're passionate about finding vulnerabilities and improving security, this is the right place for you!
☆18Updated 8 months ago
Alternatives and similar repositories for BugBountyTips
Users that are interested in BugBountyTips are comparing it to the libraries listed below
Sorting:
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆61Updated 6 months ago
- An automated recon tool for asset discovery and vulnerability scanning using open-source tools. Supports XSS, SQLi, LFI, RCE, IIS, Open R…☆60Updated this week
- Grep subdomains from web pages.☆43Updated 6 months ago
- NextSploit is a command-line tool designed to detect and exploit CVE-2025-29927, a security flaw in Next.js☆50Updated 4 months ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆33Updated last year
- ☆43Updated 11 months ago
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆27Updated 9 months ago
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆30Updated 10 months ago
- A passive way to find backups/ sensitive information.☆86Updated last month
- TimeVault is a specialized automated tool designed to detect potential information disclosure vulnerabilities in web applications by leve…☆39Updated 7 months ago
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆44Updated 4 months ago
- Bypass Reset Password Code Lead to Account Takeover☆26Updated 11 months ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆66Updated last year
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆62Updated last year
- ☆35Updated 8 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆97Updated last month
- URL Fuzzer☆19Updated 9 months ago
- ☆68Updated last year
- Tools and methods that I personally use for Recon and Exploitations☆44Updated 3 months ago
- HackLiners: CyberSec/BugHunting OneLiners☆59Updated 10 months ago
- Host Header Vulnerability Scanner Automated Tool☆23Updated 4 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆114Updated 10 months ago
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆41Updated 10 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆83Updated 7 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆28Updated last year
- ☆57Updated last year
- Url scrapper or extractor from alienvault☆32Updated 5 months ago
- subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…☆49Updated 8 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆47Updated 8 months ago
- This script Crawl the website and find the urls that contains html forms.☆71Updated last year