ResourcesA Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (+158.33%)
Mutual labels: security-audit, infosec, security-vulnerability, bugbounty
NIST-to-TechAn open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (+154.17%)
Mutual labels: vulnerability, infosec, pentest, infosec-reference
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (+658.33%)
Mutual labels: security-audit, infosec, security-vulnerability, bugbounty
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Stars: ✭ 1,949 (+8020.83%)
Mutual labels: exploit, infosec, bugbounty, pentest
browserrecon-phpAdvanced Web Browser Fingerprinting
Stars: ✭ 29 (+20.83%)
Mutual labels: exploit, vulnerability, security-vulnerability
PwndocPentest Report Generator
Stars: ✭ 417 (+1637.5%)
Mutual labels: security-audit, infosec, pentest
VulscanAdvanced vulnerability scanning with Nmap NSE
Stars: ✭ 2,305 (+9504.17%)
Mutual labels: security-audit, exploit, vulnerability
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+491.67%)
Mutual labels: infosec, bugbounty, pentest
FaradayFaraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+13225%)
Mutual labels: security-audit, vulnerability, infosec
dheaterD(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.
Stars: ✭ 142 (+491.67%)
Mutual labels: exploit, poc, vulnerability
flydnsRelated subdomains finder
Stars: ✭ 29 (+20.83%)
Mutual labels: infosec, bugbounty, pentest
Pythempentest framework
Stars: ✭ 1,060 (+4316.67%)
Mutual labels: security-audit, exploit, pentest
CVE-2021-33766ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
Stars: ✭ 37 (+54.17%)
Mutual labels: exploit, poc, vulnerability
exploitsSome of my public exploits
Stars: ✭ 50 (+108.33%)
Mutual labels: exploit, vulnerability, security-vulnerability
PayloadsAllA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 31 (+29.17%)
Mutual labels: vulnerability, bugbounty, pentest
PastebinMarkdownXSSXSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (+250%)
Mutual labels: vulnerability, infosec, bugbounty
PubVulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb
Stars: ✭ 217 (+804.17%)
Mutual labels: exploit, poc, vulnerability
ExphubExphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
Stars: ✭ 3,056 (+12633.33%)
Mutual labels: exploit, poc, vulnerability
rejigTurn your VPS into an attack box
Stars: ✭ 33 (+37.5%)
Mutual labels: infosec, bugbounty, pentest