hacker0x011111111's repositories
logdna-agent-v2
The blazingly fast, resource efficient log collection client
PrivateBin
A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES.
inventory
Asset inventory of over 800 public bug bounty programs.
github-endpoints
Find endpoints on GitHub.
CVE-2024-21893.py
CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure
client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
metcon-automated-recon
My bugbounty recon methodology... automated.
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
tulip
A Modern Framework for Bug Bounty Hunting
KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
cent_nuclei_templates
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place
mapperplus
MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
eval_villain
A Firefox Web Extension to improve the discovery of DOM XSS.
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
Awesome-WAF
🔥 Web-application firewalls (WAFs) from security standpoint.
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
content-type-research
Content-Type Research
exploit-nginx-1.10.3
CVE-2017-7529 | nginx on the range 0.5.6 - 1.13.2
JaSt
Syntactic detection of malicious (obfuscated) JavaScript files