chubalemba's Stars
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
elkokc/reflector
Burp plugin able to find reflected XSS on page in real-time while browsing on site
x0uid/SpotifyAdBlock
Protect your privacy by blocking all annoying Spotify ads & analytics in Linux, OSX and Windows with hosts file.
dwisiswant0/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
owasp-amass/amass
In-depth attack surface mapping and asset discovery
bugcrowd/templates
Repository to house markdown templates for researchers
coffinxp/payloads
termux/termux-app
Termux - a terminal emulator application for Android OS extendible by variety of packages.
vavkamil/awesome-bugbounty-tools
A curated list of various bug bounty tools
massgravel/get.activated.win
Repository for get.activated.win site
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Aituglo/hackyx
The Search Engine for Cybersecurity
aress31/burpgpt
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
s0md3v/Arjun
HTTP parameter discovery suite.
bughunterlabs/bug-bounty-tips
immunefi-team/Web3-Security-Library
Information about web3 security and programming tutorials/tools
massgravel/Microsoft-Activation-Scripts
Open-source Windows and Office activator featuring HWID, Ohook, KMS38, and Online KMS activation methods, along with advanced troubleshooting.
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
beefproject/beef
The Browser Exploitation Framework Project
s0md3v/AwesomeXSS
Awesome XSS stuff
Crypto-Cat/CTF
CTF chall write-ups, files, scripts etc (trying to be more organised LOL)
trufflesecurity/xsshunter
devanshbatham/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
yeahhub/Hacking-Security-Ebooks
Top 100 Hacking & Security E-Books (Free Download)
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
m0bilesecurity/Frida-Mobile-Scripts
Collection of useful FRIDA Mobile Scripts
jhaddix/tbhm
The Bug Hunters Methodology