bug-bounty
xss-payload-list
bug-bounty | xss-payload-list | |
---|---|---|
4 | 6 | |
10 | 5,725 | |
- | 4.1% | |
10.0 | 0.0 | |
over 1 year ago | 6 months ago | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
bug-bounty
-
Introducing the Soulbound Ninja Token - Join the Elite Ranks Now!
Masafi: https://masa.finance/
-
Masa x Mesha Partnership: Introducing Soulbound Business Identity and Line of Credit
Masa and Mesha have partnered to launch web3’s first Soulbound Line of Credit for web3 organizations.
-
Masa Bug Bounty Program is Now Open
Participate in the program and you will get rewarded from the Bug Bounty Pool for successfully submitting a GitHub Issue or Pull Request to any of our public code repos. If the bug you find is in infrastructure and not localized to a repo, you should submit it to the Bug Bounty repo here.
-
Masa
Bug Bounty здесь: https://github.com/masa-finance/bug-bounty
xss-payload-list
-
XSS example
Like an example XSS payload? Go nuts: https://github.com/payloadbox/xss-payload-list
-
Go with PHP
Otherwise, only vague and unsubstantiated claims, which does not help PHP nor any other programming language or framework.
[] https://github.com/payloadbox/xss-payload-list
- SC
- A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters
- Cross Site Scripting ( XSS ) Vulnerability Payload List
-
Password protected website (no username) - best way in?
Tried it now, with the https://github.com/payloadbox/xss-payload-list/tree/master/Intruder list.
What are some alternatives?
HowToHunt - Collection of methodology and test case for various web vulnerabilities.
ssti-payloads - 🎯 Server Side Template Injection Payloads
Scanners-Box - A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
XSStrike - Most advanced XSS scanner.
can-i-take-over-xyz - "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
sql-injection-payload-list - 🎯 SQL Injection Payload List
awesome-hacker-search-engines - A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
OWASP-Xenotix-XSS-Exploit-Framework - OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
plugin-cloud-storage - The official cloud storage plugin for Payload
ppmap - A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
fuzzdb - Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
big-list-of-naughty-strings - The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.