tcpiplab / Web-App-Hacking-NotesLinks
Notes I've taken while working through various web app pentesting labs.
☆91Updated 7 years ago
Alternatives and similar repositories for Web-App-Hacking-Notes
Users that are interested in Web-App-Hacking-Notes are comparing it to the libraries listed below
Sorting:
- Facebook Bug Bounties☆105Updated 4 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆61Updated 6 years ago
- Resolve and quickly portscan a list of (sub)domains.☆87Updated 9 years ago
- Fuzzing for LFI using Burpsuite☆66Updated 9 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 7 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆135Updated 6 years ago
- Finds all public bug reports on reported on Hackerone☆93Updated 9 years ago
- Collection of Bug Bounty Tips☆65Updated 5 years ago
- XSS Hunter Burp Plugin☆150Updated 7 years ago
- A collection of scripts to extend Burp Suite☆142Updated 6 years ago
- A curated list of amazingly bug bounty tips from security researchers around the world.☆105Updated 6 years ago
- Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)☆146Updated 4 years ago
- Damn Vulnerable eXtensive Training Environment☆106Updated 3 years ago
- ☆121Updated 8 years ago
- Burp Suite extension to discover assets from HTTP response.☆230Updated 9 months ago
- A list to discover work of red team tooling and methodology for penetration testing and security assessment☆78Updated 6 years ago
- Files for appsecwiki.com☆118Updated 5 years ago
- Penetration Testing Playbook (PTP)☆175Updated 6 years ago
- Sample vulnerable code and its exploit code☆189Updated 4 years ago
- CVE-2017-9506 - SSRF☆190Updated 3 years ago
- Fuzzing Payloads to Assist in Web Application Testing.☆167Updated 6 years ago
- An entry level resource to learning bug bounty.☆28Updated 7 years ago
- ☆36Updated 7 years ago
- Collection of scripts that aid in penetration testing of JSON Web Tokens☆59Updated 6 years ago
- ☆48Updated 6 years ago
- Actarus is a custom tool for bug bounty☆77Updated 5 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 8 years ago
- subdomain bruteforce list☆102Updated last year
- A Cross Site Scripting scanner using selenium webdriver☆54Updated 5 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆37Updated 7 years ago