#other #apisecurity #bugbounty #cybersecurity #information_security #penetration_testing
https://github.com/cyprosecurity/API-SecurityEmpire
https://github.com/cyprosecurity/API-SecurityEmpire
GitHub
GitHub - cyprosecurity/API-SecurityEmpire: API Security Project aims to present unique attack & defense methods in API Security…
API Security Project aims to present unique attack & defense methods in API Security field - cyprosecurity/API-SecurityEmpire
#other #awesome #awesome_list #bugbounty #security_tools #tools #web_security
https://github.com/vavkamil/awesome-bugbounty-tools
https://github.com/vavkamil/awesome-bugbounty-tools
GitHub
GitHub - vavkamil/awesome-bugbounty-tools: A curated list of various bug bounty tools
A curated list of various bug bounty tools. Contribute to vavkamil/awesome-bugbounty-tools development by creating an account on GitHub.
#dockerfile #awesome_list #bugbounty #cms #code #execution #exploit #framework #rce
https://github.com/p0dalirius/Awesome-RCE-techniques
https://github.com/p0dalirius/Awesome-RCE-techniques
GitHub
GitHub - p0dalirius/Awesome-RCE-techniques: Awesome list of step by step techniques to achieve Remote Code Execution on various…
Awesome list of step by step techniques to achieve Remote Code Execution on various apps! - p0dalirius/Awesome-RCE-techniques
#python #bugbounty #bugbounty_tool #crlf_injection #crlf_injection_scanner #ethical_hacking #pentest_tool #pentesting #webapp_pentesting
https://github.com/Nefcore/CRLFsuite
https://github.com/Nefcore/CRLFsuite
GitHub
GitHub - Raghavd3v/CRLFsuite: The most powerful CRLF injection (HTTP Response Splitting) scanner.
The most powerful CRLF injection (HTTP Response Splitting) scanner. - Raghavd3v/CRLFsuite
#other #awesome #awesome_list #awesome_lists #bugbounty #dns #domain #exploit #hacking #hacking_tools #osint #osint_tool #redteam #redteaming #search_engine #security #security_tools #url #vulnerabilities #vulnerability #wifi_network
https://github.com/edoardottt/awesome-hacker-search-engines
https://github.com/edoardottt/awesome-hacker-search-engines
GitHub
GitHub - edoardottt/awesome-hacker-search-engines: A curated list of awesome search engines useful during Penetration testing,…
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more - edoardottt/awesome-hacker-search-engines
#other #bugbounty #google #google_api #juicy #oauth #regex #regex_pattern #secret #secret_keys
https://github.com/h33tlit/secret-regex-list
https://github.com/h33tlit/secret-regex-list
GitHub
GitHub - h33tlit/secret-regex-list: List of regex for scraping secret API keys and juicy information.
List of regex for scraping secret API keys and juicy information. - h33tlit/secret-regex-list
#python #alexbieber #bug #bug_bounty #bug_bounty_hunters #bug_bounty_hunting #bug_bounty_poc #bug_bounty_recon #bug_poc #bugbounty #bugcrowd #facebook #google #hackerone #integriti
https://github.com/alexbieber/Bug_Bounty_writeups
https://github.com/alexbieber/Bug_Bounty_writeups
GitHub
GitHub - alexbieber/Bug_Bounty_writeups: BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔. Contribute to alexbieber/Bug_Bounty_writeups development by creating an account on GitHub.
#go #0day #attack #auto #brute_force #bugbounty #bugbounty_tools #golang #hacker #hacktools #nmap #nuclei #pentest_tool #ssh #tools #vulnerabilities_scan
https://github.com/hktalent/scan4all
https://github.com/hktalent/scan4all
GitHub
GitHub - GhostTroops/scan4all: Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints;…
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)... - ...
#other #bugbounty #content_discovery #directory_bruteforce #hacking #infosec #penetration_testing #pentesting #reconnaissance #security #wordlist #wordlist_generator #wordlists #wordlists_dictionary_collection
https://github.com/trickest/wordlists
https://github.com/trickest/wordlists
GitHub
GitHub - trickest/wordlists: Real-world infosec wordlists, updated regularly
Real-world infosec wordlists, updated regularly. Contribute to trickest/wordlists development by creating an account on GitHub.
#shell #attack_surface #attack_surface_management #attacksurface #bugbounty_platform #cybersecurity #hacking #hacking_tools #osint_framework #osint_tool #penetration_testing #pentest_scripts #pentest_tool #pentest_tools #pentesting #pentesting_tools #security #security_tools #sn1per #sn1per_professional
https://github.com/1N3/Sn1per
https://github.com/1N3/Sn1per
GitHub
GitHub - 1N3/Sn1per: Attack Surface Management Platform
Attack Surface Management Platform. Contribute to 1N3/Sn1per development by creating an account on GitHub.
#python #bugbounty #csrf #hackerone #idor #rce #reports #security #sql_injection #ssrf #writeups #xss #xxe
https://github.com/reddelexc/hackerone-reports
https://github.com/reddelexc/hackerone-reports
GitHub
GitHub - reddelexc/hackerone-reports: Top disclosed reports from HackerOne
Top disclosed reports from HackerOne. Contribute to reddelexc/hackerone-reports development by creating an account on GitHub.
#python #blueteam #bugbounty #cheatsheet #credentials_gathering #cybersecurity #default_password #exploit #infosec #offensive_security #pentest #pentesting
https://github.com/ihebski/DefaultCreds-cheat-sheet
https://github.com/ihebski/DefaultCreds-cheat-sheet
GitHub
GitHub - ihebski/DefaultCreds-cheat-sheet: One place for all the default credentials to assist the Blue/Red teamers identifying…
One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️ - ihebski/DefaultCreds-cheat-sheet
#ruby #awesome_list #bugbounty #bugbountytips #hacking #scanner #security #tools #webhacking
https://github.com/hahwul/WebHackersWeapons
https://github.com/hahwul/WebHackersWeapons
GitHub
GitHub - hahwul/WebHackersWeapons: ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy…
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting - hahwul/WebHackersWeapons
#python #bugbounty #cybersecurity #hacking #nuclei #penetration_testing #pentesting #reconnaissance #security #security_tools #vulnerability_scanners #web #webapplication #webappsecurity
https://github.com/gotr00t0day/Gsec
https://github.com/gotr00t0day/Gsec
GitHub
GitHub - gotr00t0day/Gsec: Web Security Scanner
Web Security Scanner. Contribute to gotr00t0day/Gsec development by creating an account on GitHub.
#javascript #bugbounty #exploit_development #exploits #fingerprint #hacktoberfest #nuclei #nuclei_checks #nuclei_templates #security #vulnerability_detection
Nuclei Templates are pre-made scripts used by the Nuclei scanner to find security vulnerabilities in applications. These templates are created and shared by a community of users, making it easier for everyone to identify and fix security issues. You can contribute your own templates, report bugs, or request new features, which helps grow the library of available templates. This community-driven approach ensures that the scanner stays updated and effective, benefiting users by providing a robust tool for enhancing application security. You can also join discussions on GitHub or the Discord community to learn more and share ideas.
https://github.com/projectdiscovery/nuclei-templates
Nuclei Templates are pre-made scripts used by the Nuclei scanner to find security vulnerabilities in applications. These templates are created and shared by a community of users, making it easier for everyone to identify and fix security issues. You can contribute your own templates, report bugs, or request new features, which helps grow the library of available templates. This community-driven approach ensures that the scanner stays updated and effective, benefiting users by providing a robust tool for enhancing application security. You can also join discussions on GitHub or the Discord community to learn more and share ideas.
https://github.com/projectdiscovery/nuclei-templates
GitHub
GitHub - projectdiscovery/nuclei-templates: Community curated list of templates for the nuclei engine to find security vulnerabilities.
Community curated list of templates for the nuclei engine to find security vulnerabilities. - projectdiscovery/nuclei-templates
#dockerfile #application_security #appsec #best_practices #bugbounty #guide #hacking #hacktoberfest #owasp #penetration_testing #pentesting #security
The OWASP Web Security Testing Guide (WSTG) is a comprehensive resource for testing the security of web applications and services. Created by security professionals and volunteers, it provides a framework of best practices used globally. The guide is constantly updated, with the current version being 5.0, and previous stable releases like 4.2 available. Users can benefit by learning detailed methods for securing web applications, contributing to the guide through feedback or translations, and connecting with the community via Slack, Twitter, or Google Groups. This helps ensure your web applications are secure and up-to-date with the latest security standards.
https://github.com/OWASP/wstg
The OWASP Web Security Testing Guide (WSTG) is a comprehensive resource for testing the security of web applications and services. Created by security professionals and volunteers, it provides a framework of best practices used globally. The guide is constantly updated, with the current version being 5.0, and previous stable releases like 4.2 available. Users can benefit by learning detailed methods for securing web applications, contributing to the guide through feedback or translations, and connecting with the community via Slack, Twitter, or Google Groups. This helps ensure your web applications are secure and up-to-date with the latest security standards.
https://github.com/OWASP/wstg
GitHub
GitHub - OWASP/wstg: The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications…
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services. - OWASP/wstg
#python #bugbounty #command_injection #commix #detection #exploitation #open_source #pentesting #python #takeover #vulnerability_scanner
Commix is a free tool that helps find and fix security problems in computer systems. It checks for "command injection" vulnerabilities, which are weaknesses that attackers can use to control your system. Commix works on many platforms and uses Python, making it easy to run without needing special setup. This tool benefits users by helping them protect their systems from attacks and ensuring they stay secure. It's also open-source, so anyone can improve or add features to it[1][3].
https://github.com/commixproject/commix
Commix is a free tool that helps find and fix security problems in computer systems. It checks for "command injection" vulnerabilities, which are weaknesses that attackers can use to control your system. Commix works on many platforms and uses Python, making it easy to run without needing special setup. This tool benefits users by helping them protect their systems from attacks and ensuring they stay secure. It's also open-source, so anyone can improve or add features to it[1][3].
https://github.com/commixproject/commix
GitHub
GitHub - commixproject/commix: Automated All-in-One OS Command Injection Exploitation Tool
Automated All-in-One OS Command Injection Exploitation Tool - commixproject/commix