A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
翻译 - 灵感来自https://github.com/ngalongc/bug-bounty-reference的Bugbounty撰写的精选清单(Bug type wise)
Making Favicon.ico based Recon Great again !
翻译 - 使基于Favicon.ico的Recon再次出色!
RouterOS Security Research Tooling and Proof of Concepts
翻译 - RouterOS安全研究工具和概念验证
ANTLR v4 grammar-based test generator
A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
Here I gather all the resources about hacking that I find interesting
Tools for BugHunting
Fuzzinator Random Testing Framework
Docker Remote API Scanner and Exploit
Hunt down the secrets from the WebArchives for Fun and Profit
A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.
Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
A utility for detecting webpage inputs and conducting XSS scans.
Cyber Security Notes, Methodology, Resources and Tips
Weaponizing Live CT logs for automated monitoring of assets
LazyHunter is an automated reconnaissance tool designed for bug hunters, leveraging Shodan's InternetDB and CVEDB APIs