Payloads
AllAboutBugBounty
Payloads | AllAboutBugBounty | |
---|---|---|
1 | 3 | |
840 | 5,433 | |
- | - | |
3.7 | 3.5 | |
about 1 year ago | 8 months ago | |
PHP | ||
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Payloads
AllAboutBugBounty
-
How I hacked chess.com with a rookie exploit
Yeah, pretty close: "On-site request forgery"[0]
[0] https://github.com/daffainfo/AllAboutBugBounty/blob/master/O...
- GitHub - daffainfo/AllAboutBugBounty: All about bug bounty (bypasses, payloads, and etc)
- Bug Bounty Resources
What are some alternatives?
ssti-payloads - 🎯 Server Side Template Injection Payloads
Galaxy-Bugbounty-Checklist - Tips and Tutorials for Bug Bounty and also Penetration Tests.
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
NETTV - Bypass NETTV restriction to install 3rd party android apps into your setup box
Garud - An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Bug-bounty - Ressources for bug bounty hunting
malicious-pdf - 💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
PENTESTING-BIBLE - articles
awesome-oneliner-bugbounty - A collection of awesome one-liner scripts especially for bug bounty tips.
HowToHunt - Collection of methodology and test case for various web vulnerabilities.
HolyTips - A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
SecurityTesting