A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
-
Updated
Aug 6, 2023 - Python
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
Making Favicon.ico based Recon Great again !
A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
Tools for BugHunting
A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
Tools of "The Bug Hunters Methodology V2 by @jhaddix"
ANTLR v4 grammar-based test generator
Hacking tools
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
Here I gather all the resources about hacking that I find interesting
R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.
Fuzzinator Random Testing Framework
Hunt down the secrets from the WebArchives for Fun and Profit
Docker Remote API Scanner and Exploit
Weaponizing Live CT logs for automated monitoring of assets
Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
The official OWASP BLT App repository/ Heist 'em bugs!
Cyber Security Notes, Methodology, Resources and Tips
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
Add a description, image, and links to the bughunting topic page so that developers can more easily learn about it.
To associate your repository with the bughunting topic, visit your repo's landing page and select "manage topics."