yasinS/bug-bounty-reference

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/yasinS/bug-bounty-reference)

yasinS / bug-bounty-reference

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

☆38

Alternatives and similar repositories for bug-bounty-reference

Users that are interested in bug-bounty-reference are comparing it to the libraries listed below

Sorting:

wwwarrior / BugBounty
View on GitHub
Cheat Sheets, Metodologies etc.
☆19Apr 12, 2019Updated 6 years ago
MantisSTS / OpenXML-XXE-Generator
View on GitHub
A tool to generate OpenXML XXE Payloads written in Python3.
☆16Aug 21, 2019Updated 6 years ago
allfro / dotNetBeautifier
View on GitHub
A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…
☆12Jun 29, 2015Updated 10 years ago
fr34k8 / awesome-pentest
View on GitHub
A collection of awesome penetration testing resources, tools and other shiny things
☆17Jan 25, 2026Updated last month
antichown / vpn-ssl-pulse
View on GitHub
Pulse SSL VPN Arbitrary File Read burp extension
☆24Sep 24, 2019Updated 6 years ago
fr34k8 / security_whitepapers
View on GitHub
Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQL…
☆62May 4, 2017Updated 8 years ago
vavkamil / BBClip
View on GitHub
Bug Bounty Clipboard
☆17Nov 6, 2019Updated 6 years ago
hermit-hacker / OSCP-Study-Notes
View on GitHub
Notes and helper scripts/files/etc from when I passed my OSCP
☆19Sep 17, 2019Updated 6 years ago
s-n-t / presentations
View on GitHub
☆54Aug 10, 2018Updated 7 years ago
PortSwigger / psycho-path
View on GitHub
psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
☆19Jun 28, 2018Updated 7 years ago
RhinoSecurityLabs / Presentations
View on GitHub
A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
☆38Aug 13, 2018Updated 7 years ago
almroot / dnsresolvers
View on GitHub
A bash script that fetches and maintains thousands of DNS resolvers
☆65Aug 24, 2020Updated 5 years ago
ecbftw / poc
View on GitHub
A collection of published exploits and proof-of-concept code.
☆21Dec 19, 2017Updated 8 years ago
emadshanab / 971-MB-content_discovery_wordlist
View on GitHub
Collection of content discovery wordlists in one wordlist.
☆38Jan 18, 2022Updated 4 years ago
arbazkiraak / LinksDumper
View on GitHub
Extract (links/possible endpoints) from responses & filter them via decoding/sorting
☆93Aug 27, 2019Updated 6 years ago
surendirans7777 / Write-up
View on GitHub
Nothing special --- Some resources to save my time
☆20Aug 14, 2020Updated 5 years ago
raoshaab / Burpsuite-Launcher
View on GitHub
To run Burpsuite from launcher, You may run it in terminal by script, But by this tool you will able to run it from Launcher with a Burp …
☆11Sep 24, 2023Updated 2 years ago
mirhatx / BestRecon
View on GitHub
BestRecon is a browser-based recon tool to gather information about your target and analyze their security on browser.
☆11Jan 1, 2021Updated 5 years ago
az0mb13 / hooker
View on GitHub
☆12Dec 3, 2022Updated 3 years ago
honoki / bbrf-burp-plugin
View on GitHub
A BurpSuite plugin for BBRF
☆25Nov 17, 2024Updated last year
OWASP-Ruhrpott / owasp-workshop-android-pentest
View on GitHub
Learning Penetration Testing of Android Applications
☆80Aug 5, 2017Updated 8 years ago
dreadlocked / ctf-writeups
View on GitHub
CTF Write-ups
☆27Apr 7, 2019Updated 6 years ago
tijme / similar-request-excluder
View on GitHub
A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.
☆43May 1, 2020Updated 5 years ago
emadshanab / facebook-bug-bounty-writeups
View on GitHub
Facebook Bug Bounties
☆106Feb 24, 2021Updated 5 years ago
Zombiehelp54 / CTF
View on GitHub
CTF Writeups
☆12Feb 25, 2023Updated 3 years ago
nightwatchcybersecurity / cloud_metadata_ips
View on GitHub
List of special metadata IPs used in cloud services
☆11Aug 9, 2019Updated 6 years ago
Phoenix1112 / DnsR
View on GitHub
☆12Sep 23, 2023Updated 2 years ago
DeborahN / Penetration-Testing-Methodology
View on GitHub
Penetration Testing Methodology - short notes
☆11May 30, 2015Updated 10 years ago
emadshanab / subs_all
View on GitHub
Subdomain Enumeration Wordlist. 8956437 unique words. Updated.
☆75May 23, 2020Updated 5 years ago
allyomalley / dnsobserver
View on GitHub
A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
☆192Sep 6, 2020Updated 5 years ago
kiview / damn-vulnerable-spring-boot-app
View on GitHub
Spring-Boot app for demonstrating security vulnaribilities
☆13Aug 21, 2019Updated 6 years ago
yoava333 / ctf-writeups
View on GitHub
☆14Jun 25, 2019Updated 6 years ago
snoopysecurity / Public
View on GitHub
Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.
☆26Mar 9, 2025Updated 11 months ago
stealthcopter / CVE-2020-28243
View on GitHub
CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion
☆18Mar 3, 2021Updated 5 years ago
PortSwigger / burp-smart-buster
View on GitHub
A Burp Suite content discovery plugin that add the smart into the Buster!
☆32Jan 22, 2018Updated 8 years ago
avlidienbrunn / bountydash
View on GitHub
BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
☆163Apr 24, 2025Updated 10 months ago
ffmpeg-test / ffmpeg-test
View on GitHub
ffmpeg exploitation tool
☆27Aug 3, 2016Updated 9 years ago
tarantula-team / CVE-2019-12949
View on GitHub
CVE-2019-12949
☆26Jun 28, 2019Updated 6 years ago
1337g / CVE-2017-10271
View on GitHub
CVE-2017-10271 WEBLOGIC RCE (TESTED)
☆39Dec 23, 2017Updated 8 years ago