#安全#Source code for Hacker101.com - a free online web and mobile security class.
翻译 - Hacker101.com的源代码-免费的在线Web和移动安全类。
#安全#Top disclosed reports from HackerOne
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
翻译 - 此仓库包含适用于报告的漏洞赏金平台范围(例如Hackerone / Bugcrowd / Intigriti / etc)的每小时更新的数据转储
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
翻译 - Sudomy是一个子域枚举工具,使用bash脚本创建,可以快速全面地分析域并收集子域。以HTML或CSV格式报告输出
#安卓#A big list of Android Hackerone disclosed reports and other resources.
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo
#网络爬虫#Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gath...
Hacker101 CTF Writeup
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
翻译 - DirDar是一个工具,用于搜索(403禁止访问)目录来破坏它并在其上获得目录清单
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
翻译 - 根据 RegEx 查找暴露的 API 密钥,并获取找到的一些密钥的利用方法
Bugbounty scope tool
HackerOne Platform Documentation
翻译 - HackerOne平台文档
List of reporting templates I have used since I started doing BBH.
Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
#Awesome#A collection of hacker tools using HackerOne's API
HackerOne资产更新 | 每日更新HackerOne资产,对HackerOne的资产进行爬行和整理,SRC资产更新仅会增加,不会进行删除,每天更新的可以进行差异化对比来获取到新的项目资产范围