SiLeNtKiLLeR-ArT

bugbountybloglist

Quick research done on some bug bounty blogs! Check em out :)

Bug-Bounty-Tips-Collection

A collection of Bug Bounty Tips collected from GitHub to all bug bounty hunters

Awesome-Dorks

Dorks for Bug Bounty Hunting

Vulnerabilities-Unmasked

This repo tries to explain complex security vulnerabilities in simple terms that even a five-year-old can understand!

GgDorker

Pastos

Offensivesecurity-Checklists

Checklists for Testing Security environment

cent

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

AllForOne

AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,

tplmap

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

dnstake

DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

http-request-smuggling

HTTP Request Smuggling Detection Tool

Reconator

Automated Recon for Pentesting & Bug Bounty

JSpector

A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues

GOAD

game of active directory

echidna

Ethereum smart contract fuzzer

JIRAya

JIRA"YA is a vulnerability analyzer for JIRA instances. It runs active scans to identify vulnerabilities by interacting with the host and conducting tests.

pastis

PASTIS: Collaborative Fuzzing Framework

30-API-security-tests

🚀 Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.

pics

File formats dissections and more...

Vulnerable-Code-Snippets

A small collection of vulnerable code snippets

ffufPostprocessing

Golang tool which helps dropping the irrelevant entries from your ffuf result file.

cariddi

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

akto

Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

burp-digitalocean-droplet-proxy

Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet

favirecon

Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.

Bug-Bounty-Methodology

These are my checklists which I use during my hunting.

linux

Linux kernel source tree

websitesVulnerableToSSTI

Simple websites vulnerable to Server Side Template Injections(SSTI)

Gopherus

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers