Tips and Tutorials for Bug Bounty and also Penetration Tests.

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

Web App bug hunting

A CLI utility to find domain's known URLs from curated passive online sources.

An IIS short filename enumeration tool

A certificate transparency log keyword sniffer written in python

GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab 16.0.0.

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

Useful Google Dorks for WebSecurity and Bug Bounty

A standalone Blind XSS Script.

Never forget where you inject.

User-Agent , X-Forwarded-For and Referer SQLI Fuzzer

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints …

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red Team operations, Bug Bounty and more

Identify virtual hosts by similarity comparison

Hidden parameters discovery suite

The Serverless Blind XSS App

Документация VK Cloud

Arsenal is just a quick inventory and launcher for hacking programs

A next-generation crawling and spidering framework.

Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications

Awesome wordlists for Bug Bounty Hunting

🐛 A list of writeups from the Google VRP Bug Bounty program

My cheatsheet notes to pentest AWS infrastructure

A Collection of Logger++ Filters for Hunting API Vulnerabilities

Finding XSS during recon