/bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

Creative Commons Attribution Share Alike 4.0 InternationalCC-BY-SA-4.0

Bug Bounty Cheat Sheet

📚 Reference 🔎 Vulnerabilities
Bug Bounty Platforms XSS
Books SQLi
Special Tools SSRF
Recon CRLF Injection
Practice Platforms CSV Injection
LFI
XXE
RCE
Open Redirect
Crypto
Template Injection
Content Injection
XSLT Injection

Contributing

We welcome contributions from the public.

Using the issue tracker 💡

The issue tracker is the preferred channel for bug reports and features requests. GitHub issues

Issues and labels 🏷

Our bug tracker utilizes several labels to help organize and identify issues.

Guidelines for bug reports 🐛

Use the GitHub issue search — check if the issue has already been reported.

Style Guide

We like to keep our Markdown files as uniform as possible. So if you submit a PR, make sure to follow this style guide (we will not be angry if you do not).

  • Cheat sheet titles should start with ##.
  • Subheadings should be made bold. (**Subheading**)
  • Add newlines after subheadings and code blocks.
  • Code blocks should use three backticks. (```)
  • Make sure to use syntax highlighting whenever possible.

Contributors