bugbounty-cheatsheet
ctf-tools
Our great sponsors
bugbounty-cheatsheet | ctf-tools | |
---|---|---|
3 | 3 | |
5,561 | 8,156 | |
- | - | |
0.0 | 4.3 | |
8 months ago | 5 months ago | |
Shell | ||
Creative Commons Attribution Share Alike 4.0 | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
bugbounty-cheatsheet
ctf-tools
-
$2000 SGD Budget, Linux Laptop in Singapore
WILL be using this laptop for beginner cybersecurity, (picoCTF type) which requires basic installation of a few tools (see [here](https://github.com/zardus/ctf-tools) or [here](https://blogs.nvcc.edu/kdinh/ctftools/) as wel as adobe photoshop, after effects, premiere pro, any one of android x86/genymotion/anbox/appetize io/waydroid Also need basic multitasking ability (one browser with 20 tabs + command line + at least one CTF or video editing tool + Spotify running at once preferably - if ur suggestion does not fit this criteria still feel free to comment, but state it clearly!)
-
Cyber Security resources
Popular Tools List
-
Awesome Penetration Testing
ctf-tools - Collection of setup scripts to install various security research tools easily and quickly deployable to new machines.
What are some alternatives?
API-Security-Checklist - Checklist of the most important security countermeasures when designing, testing, and releasing your API
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
wstg - The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
masscan - TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
sql-injection-payload-list - 🎯 SQL Injection Payload List
ZAP - The ZAP core project
command-injection-payload-list - 🎯 Command Injection Payload List
iodine - Official git repo for iodine dns tunnel
ssti-payloads - 🎯 Server Side Template Injection Payloads
dnstwist - Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
can-i-take-over-xyz - "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Resources-for-Beginner-Bug-Bounty-Hunters - A list of resources for those interested in getting started in bug bounties