| devanshbatham/Awesome-Bugbounty-Writeups |
3,839 |
|
0 |
0 |
over 2 years ago |
0 |
|
8 |
|
Python |
| A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference |
| B3nac/Android-Reports-and-Resources |
1,312 |
|
0 |
0 |
over 2 years ago |
0 |
|
1 |
|
|
| A big list of Android Hackerone disclosed reports and other resources. |
| BlackFan/client-side-prototype-pollution |
1,236 |
|
0 |
0 |
about 2 years ago |
0 |
|
3 |
|
|
| Prototype Pollution and useful Script Gadgets |
| xdavidhu/awesome-google-vrp-writeups |
1,008 |
|
0 |
0 |
over 2 years ago |
0 |
|
0 |
|
Python |
| 🐛 A list of writeups from the Google VRP Bug Bounty program |
| nemesida-waf/waf-bypass |
970 |
|
0 |
0 |
over 2 years ago |
0 |
|
0 |
mit |
Python |
| Check your WAF before an attacker does |
| epsylon/xsser |
814 |
|
0 |
0 |
over 3 years ago |
0 |
|
0 |
|
Python |
| Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications. |
| Metnew/uxss-db |
580 |
|
0 |
0 |
about 5 years ago |
0 |
|
4 |
mit |
HTML |
| 🔪Browser logic vulnerabilities :skull_and_crossbones: |
| hackerscrolls/SecurityTips |
525 |
|
0 |
0 |
almost 5 years ago |
0 |
|
1 |
|
|
| YagamiiLight/Cerberus |
246 |
|
0 |
0 |
over 6 years ago |
0 |
|
5 |
|
Python |
| 一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能 |
| Neelakandan-A/BugBounty_CheatSheet |
211 |
|
0 |
0 |
almost 3 years ago |
0 |
|
0 |
gpl-3.0 |
|
| BugBounty_CheatSheet |
