Tamim Hasan's starred repositories
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Awesome-Fuzzing
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
SmartProxy
Firefox/Chrome browser extension. SmartProxy will automatically enable/disable proxy for the sites you visit, based on customizable patterns.
Bug-Bounty-Wordlists
A repository that includes all the important wordlists used while bug hunting.
NucleiFuzzer
NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications
public-bugbounty-programs
Community curated list of public bug bounty and responsible disclosure programs.
image-upload-exploits
This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.
public-reports
bug bounty disclosed reports
hack-your-government
A list of governments with Vulnerability Disclosure Policies
wp-update-confusion
WordPress Plugin Update Confusion
BugBountySubdomains
Tools to gather subdomains from Bug Bounty programs
hack-your-university
A list of universities with vulnerability disclosure policies
vdp-in-fceb
Vulnerability disclosure policies in the US Government's executive branch
websitewatcher
Monitor websites for changes