Alternatives and similar repositories for Web-App-Hacking-Notes

Users that are interested in Web-App-Hacking-Notes are comparing it to the libraries listed below

• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆105Updated 4 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆55Updated 7 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆66Updated 9 years ago
• upgoingstar / hackerone_public_reports
  Finds all public bug reports on reported on Hackerone
  ☆95Updated 9 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆87Updated 9 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆61Updated 6 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆135Updated 6 years ago
• bilbomal / BB-Tips
  Collection of Bug Bounty Tips
  ☆65Updated 5 years ago
• aungthurhahein / Red-Team-Curation-List
  A list to discover work of red team tooling and methodology for penetration testing and security assessment
  ☆78Updated 6 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆150Updated 7 years ago
• hexrom / PenetrationTesting-Playbook
  Penetration Testing Playbook (PTP)
  ☆175Updated 6 years ago
• incredibleindishell / CORS-vulnerable-Lab
  Sample vulnerable code and its exploit code
  ☆190Updated 4 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆230Updated 9 months ago
• ajdumanhug / awesome-bug-bounty-tips
  A curated list of amazingly bug bounty tips from security researchers around the world.
  ☆105Updated 6 years ago
• fr34k8 / security_whitepapers
  Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQL…
  ☆62Updated 8 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆108Updated 3 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆110Updated 6 years ago
• r00tgate / bugbounty101
  An entry level resource to learning bug bounty.
  ☆28Updated 7 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆142Updated 6 years ago
• j0bin / Pentest-Resources
  ☆121Updated 8 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆102Updated last year
• VincentDS / HackerOne-Notifier
  Send notifications if a new program is published on HackerOne using Pushbullet
  ☆26Updated 8 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆167Updated 6 years ago
• buckhacker / SubDomainTakeoverTools
  ☆36Updated 7 years ago
• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆165Updated 6 years ago
• MilindPurswani / Syborg
  Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)
  ☆146Updated 4 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆216Updated last year
• ibr2 / Go-For-OSCP
  ☆18Updated 8 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• Hacker0x01 / h1-212-ctf-solutions
  A collection of the solutions people wrote for the H1-212 Capture The Flag event
  ☆97Updated 6 years ago