AliSamy00's Stars
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
rapid7/metasploit-framework
Metasploit Framework
zaproxy/zaproxy
The ZAP by Checkmarx Core project
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
OJ/gobuster
Directory/File, DNS and VHost busting tool written in Go
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
EdOverflow/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
s0md3v/Arjun
HTTP parameter discovery suite.
devanshbatham/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
djadmin/awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
hahwul/WebHackersWeapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
ngalongc/bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
gwen001/pentest-tools
A collection of custom security tools for quick needs.
dwisiswant0/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
imran-parray/Mind-Maps
Mind-Maps of Several Things
inonshk/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
Hackplayers/hackthebox-writeups
Writeups for HacktheBox 'boot2root' machines
HolyBugx/HolyTips
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Sh1Yo/x8
Hidden parameters discovery suite
xnl-h4ck3r/GAP-Burp-Extension
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
Viralmaniar/BigBountyRecon
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
httpvoid/writeups
0ang3el/aem-hacker
orwagodfather/WordList
ZephrFish/BugBountyTemplates
A collection of templates for bug bounty reporting
frank-leitner/portswigger-websecurity-academy
Writeups for PortSwigger WebSecurity Academy
fardeen-ahmed/Bug-bounty-Writeups
Repository of Bug-Bounty Writeups
DJDarkCyber/Fake-News-Detector
Fake News Detector Web Application
elqal3awii/WebSecurity-Academy-with-Rust
Scripts for solving WebSecurity Academy labs of PortSwigger using Rust