Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
☆38Nov 8, 2017Updated 8 years ago
Alternatives and similar repositories for bug-bounty-reference
Users that are interested in bug-bounty-reference are comparing it to the libraries listed below
Sorting:
- Cheat Sheets, Metodologies etc.☆19Apr 12, 2019Updated 6 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Jun 29, 2015Updated 10 years ago
- A tool to generate OpenXML XXE Payloads written in Python3.☆16Aug 21, 2019Updated 6 years ago
- A collection of awesome penetration testing resources, tools and other shiny things☆17Jan 25, 2026Updated last month
- Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQL…☆62May 4, 2017Updated 8 years ago
- ☆10Oct 13, 2020Updated 5 years ago
- Pulse SSL VPN Arbitrary File Read burp extension☆24Sep 24, 2019Updated 6 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Aug 24, 2020Updated 5 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆93Aug 27, 2019Updated 6 years ago
- Enumerate AWS S3 buckets using different permutations☆17Jan 28, 2022Updated 4 years ago
- A lightweight type converter python library.☆13Oct 1, 2020Updated 5 years ago
- BestRecon is a browser-based recon tool to gather information about your target and analyze their security on browser.☆11Jan 1, 2021Updated 5 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆19Jun 28, 2018Updated 7 years ago
- CTF Write-ups☆27Apr 7, 2019Updated 6 years ago
- ☆14Jul 13, 2020Updated 5 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆38Aug 13, 2018Updated 7 years ago
- Notes and helper scripts/files/etc from when I passed my OSCP☆19Sep 17, 2019Updated 6 years ago
- Collection of content discovery wordlists in one wordlist.☆38Jan 18, 2022Updated 4 years ago
- Intro To CTF In Arabic☆17Aug 3, 2020Updated 5 years ago
- Facebook Bug Bounties☆106Feb 24, 2021Updated 5 years ago
- ☆54Aug 10, 2018Updated 7 years ago
- Bug Bounty Clipboard☆17Nov 6, 2019Updated 6 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆32Jan 22, 2018Updated 8 years ago
- A collection of published exploits and proof-of-concept code.☆21Dec 19, 2017Updated 8 years ago
- Penetration Testing Methodology - short notes☆11May 30, 2015Updated 10 years ago
- Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.☆26Mar 4, 2026Updated 2 weeks ago
- Scans a list of websites for Cloudfront or S3 Buckets☆110Oct 28, 2025Updated 4 months ago
- Alpha version code of Recon UI☆15Feb 26, 2018Updated 8 years ago
- small set of scripts to practice exploit XSS and CSRF vulnerabilities☆66Dec 22, 2017Updated 8 years ago
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 5 years ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆192Sep 6, 2020Updated 5 years ago
- Learning Penetration Testing of Android Applications☆80Aug 5, 2017Updated 8 years ago
- A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.☆43May 1, 2020Updated 5 years ago
- A shell script to grab subdomains from https://crt.sh, and probe for working http and https servers with @tomnomnom's tool https://github…☆42Jun 19, 2021Updated 4 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆39Dec 23, 2017Updated 8 years ago
- Nothing special --- Some resources to save my time☆20Aug 14, 2020Updated 5 years ago
- A collection of scripts to extend Burp Suite☆142Apr 8, 2019Updated 6 years ago
- Misc. Public Reports of Penetration Testing and Security Audits.☆35Jan 8, 2021Updated 5 years ago
- ☆15Dec 15, 2020Updated 5 years ago