The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 22 Bugbountytip Open-Source Projects
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
-
WebHackersWeapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
-
awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
-
HolyTips
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
learn365
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
-
API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field (by Cyber-Guy1)
-
Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
-
MobileHackersWeapons
Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
-
CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
-
PassDetective
PassDetective is a command-line tool that scans shell command history to detect mistakenly written passwords, API keys, and secrets. Using regular expressions, it helps prevent accidental exposure of sensitive information in your command history.
-
sqli-postgres-rce-privesc-hacking-playground
Application with SQL Injection vulnerability and possible privilege escalation. Free vulnerable app for ethical hacking / penetration testing training.
-
CloudSniffer
CloudSniffer is a powerful tool designed to aid in the discovery of the real IP address of a website protected by Cloudflare. It leverages brute force techniques by testing a list of IP addresses and analyzing the status codes returned by the server to uncover the actual IP address of the target website.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Yeah, pretty close: "On-site request forgery"[0]
[0] https://github.com/daffainfo/AllAboutBugBounty/blob/master/O...
Project mention: Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes | /r/bugbounty | 2023-05-26
Bugbountytips related posts
- How I hacked chess.com with a rookie exploit
- PassDetective has released on Kali Linux
- Introducing PassDetective: Your Guardian Against Accidental Data Exposure in Command History! 🛡️🕵️♂️
- Introducing PassDetective: Your Guardian Against Accidental Data Exposure in Command History! 🛡️🕵️♂️
- Introducing PassDetective: Your Guardian Against Accidental Data Exposure in Command History! 🛡️🕵️♂️
- Introducing PassDetective: Your Guardian Against Accidental Data Exposure in Command History! 🛡️🕵️♂️
- Introducing PassDetective: Your Guardian Against Accidental Data Exposure in Command History! 🛡️🕵️♂️
-
A note from our sponsor - WorkOS
workos.com | 29 Apr 2024
Index
What are some of the best open-source Bugbountytip projects? This list will help you:
Project | Stars | |
---|---|---|
1 | HowToHunt | 5,587 |
2 | AllAboutBugBounty | 5,423 |
3 | Awesome-Bugbounty-Writeups | 4,373 |
4 | WebHackersWeapons | 3,645 |
5 | awesome-oneliner-bugbounty | 2,429 |
6 | 31-days-of-API-Security-Tips | 2,057 |
7 | HolyTips | 1,685 |
8 | learn365 | 1,513 |
9 | Galaxy-Bugbounty-Checklist | 1,314 |
10 | API-SecurityEmpire | 1,285 |
11 | Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes | 1,175 |
12 | metabigor | 1,139 |
13 | Garud | 752 |
14 | MobileHackersWeapons | 641 |
15 | ssti-payloads | 560 |
16 | ppfuzz | 542 |
17 | Bug-Bounty-Methodology | 481 |
18 | CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera | 321 |
19 | csv-injection-payloads | 169 |
20 | PassDetective | 106 |
21 | sqli-postgres-rce-privesc-hacking-playground | 71 |
22 | CloudSniffer | 52 |
Sponsored