Sahabalam's repositories
bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
altdns
Generates permutations, alterations and mutations of subdomains and then resolves them
Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
AndroidSecNotes
An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentesters, reverse engineer, and redteamers.
awesome-android-security
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
awesome-api-security
A collection of awesome API Security tools and resources.
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
AwesomeXSS
Awesome XSS stuff
bbtips
BugBountyTips
burp-log4shell
Log4Shell scanner for Burp Suite
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
CT_subdomains
An hourly updated list of subdomains gathered from certificate transparency logs
Cyber-Sec-Resources
An organized list of resources including tools, blog-posts and how-to tutorials compiled and created by SCSP community members.
hackerone-reports
Top disclosed reports from HackerOne
jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
upload_bypass
File upload restrictions bypass, by using different bug bounty techniques!
XSStrike
Most advanced XSS scanner.
ytmdesktop
A Desktop App for YouTube Music