#
Lists (2)
Starred repositories
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Keycloak admin API allows low privilege users to use administrative functions
A collection of awesome one-liner scripts especially for bug bounty tips.
This Repositories contains list of One Liners with Descriptions and Installation requirements
1
Updated Apr 28, 2024
Top disclosed reports from HackerOne
A collection of tools to perform searches on GitHub.
zubemX / Bug-Bounty
Forked from AnLoMinus/Bug-BountyBug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More
OWASP Web Application Security Testing Checklist
1
Updated Aug 18, 2022
zubemX / Bug-bounty-checklist-01
Forked from sehno/Bug-bountyRessources for bug bounty hunting
1
Updated Dec 1, 2022
All about bug bounty (bypasses, payloads, and etc)
1
Updated Dec 9, 2022
zubemX / scan4all-web-app
Forked from GhostTroops/scan4allOfficial repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
zubemX / SQLiDetector
Forked from eslam3kl/SQLiDetectorSimple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for diff…
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
Community curated list of public bug bounty and responsible disclosure programs.
zubemX / S3Scanner
Forked from sa7mon/S3ScannerScan for misconfigured S3 buckets across S3-compatible APIs!
The EXCLUSIVE Collection of 38,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.
zubemX / bbot
Forked from blacklanternsecurity/bbotA recursive internet scanner for hackers.
A big list of Android Hackerone disclosed reports and other resources.
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
This is CheatSheet which I used on PJPT exam to fully compromise Domain Controller by doing internal network penentration testing.
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
C3n7ral051nt4g3ncy / poastal
Forked from jakecreps/poastalPoastal - the Email OSINT tool