EdOverflow / Bug Bounty Responses
A collection of response templates for invalid bug bounty reports.
Stars: ✭ 46
Projects that are alternatives of or similar to Bug Bounty Responses
Bugbounty Cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
Stars: ✭ 3,644 (+7821.74%)
Mutual labels: infosec, bugbounty
Metabigor
Intelligence tool but without API key
Stars: ✭ 424 (+821.74%)
Mutual labels: infosec, bugbounty
Hetty
Hetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (+7717.39%)
Mutual labels: infosec, bugbounty
H2csmuggler
HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
Stars: ✭ 292 (+534.78%)
Mutual labels: infosec, bugbounty
Assessment Mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
Stars: ✭ 608 (+1221.74%)
Mutual labels: infosec, bugbounty
Go Dork
The fastest dork scanner written in Go.
Stars: ✭ 274 (+495.65%)
Mutual labels: infosec, bugbounty
Bugbountyguide
Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.
Stars: ✭ 338 (+634.78%)
Mutual labels: infosec, bugbounty
Pentesting
Misc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-47.83%)
Mutual labels: infosec, bugbounty
Android Reports And Resources
A big list of Android Hackerone disclosed reports and other resources.
Stars: ✭ 590 (+1182.61%)
Mutual labels: infosec, bugbounty
Learn365
This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection
Stars: ✭ 525 (+1041.3%)
Mutual labels: infosec, bugbounty
Megplus
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Stars: ✭ 268 (+482.61%)
Mutual labels: infosec, bugbounty
Legal Bug Bounty
#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.
Stars: ✭ 42 (-8.7%)
Mutual labels: infosec, bugbounty
Xxe Injection Payload List
🎯 XML External Entity (XXE) Injection Payload List
Stars: ✭ 304 (+560.87%)
Mutual labels: infosec, bugbounty
Bxss
bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
Stars: ✭ 331 (+619.57%)
Mutual labels: infosec, bugbounty
PastebinMarkdownXSS
XSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (+82.61%)
Mutual labels: infosec, bugbounty
targets
A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.
Stars: ✭ 85 (+84.78%)
Mutual labels: infosec, bugbounty
Security Tools
Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (+1006.52%)
Mutual labels: infosec, bugbounty
Bug bounty responses
A collection of response templates for invalid bug bounty reports. This project is designed to work well with @fransr's Template generator.
Installation & setup process
$ git clone https://github.com/fransr/template-generator.git
$ git clone https://github.com/EdOverflow/bug-bounty-responses.git
$ cp -a bug-bounty-responses/tpls/. template-generator/tpls/
$ cd template-generator
$ php -S localhost:8000
Contributing
I welcome contributions from the public.
Using the issue tracker 💡
The issue tracker is the preferred channel for bug reports and features requests. 
Issues and labels 🏷
I use several labels to help organise and identify issues.
Guidelines for bug reports 🐛
Use the GitHub issue search — check if the issue has already been reported.
Style Guide
I like to keep the Markdown files as uniform as possible. So if you submit a PR make sure to use this base template:
Hi {{username}},
...
{{triager}}
Donations
If you would like to support my work, you can use any of the addresses below:
Liberapay: https://liberapay.com/EdOverflow
Bitcoin: 1E2fZRNrrkCKPnWpKZAsJzByBoyoBURADN
Ethereum: 0xe98FC23fB4A8762d700c0354979dA5Db6c29Acc3
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].