Mominul Islam's repositories
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
Mind-Maps
Mind-Maps of Several Things
4-ZERO-3
403/401 Bypass Methods + Bash Automation + Your Support ;)
Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
awesome-bugbounty-builder
Awesome Bug bounty builder Project
awesome-google-vrp-writeups
🐛 A list of writeups from the Google VRP Bug Bounty program
Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
BetterBugBounty
BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Bug-Bounty-Dorks-2
Bug Bounty Dorks
Bug-Bounty-Methodology
These are my checklists which I use during my hunting.
BugBountyDorks
Dorks for finding Self-hosted/Public Bug Bounty Programs
FFUF-Tips-And-Tricks
Describe how to use ffuf different options with examples
freq
This is go CLI tool for send fast Multiple get HTTP request.
google-dorks-bug-bounty
A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting
h1domains
HackerOne "in scope" domains
hackerone-reports
Top disclosed reports from HackerOne
HuntTheBug
Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack > URL + JavaScript Scan > Dir Brute Forcing > Open Port Check With Telegram Bot Notification
metasecjs
MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts
tbhm
The Bug Hunters Methodology
top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
xnLinkFinder
A python tool used to discover endpoints (and potential parameters) for a given target
xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
xss_vibes
A modern tool written in Python that automates your xss findings.