Pinned Repositories
12345
apache_path_traversal
api_wordlist
A wordlist of API names for web application assessments
awesome-google-vrp-writeups
🐛 A list of writeups from the Google VRP Bug Bounty program
Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
Bug-Bounty
Here Are Some Collected resource from twitter
sqli-labs
SQLI labs to test error based, Blind boolean based, Time based.
gwill-b's Repositories
gwill-b/apache_path_traversal
gwill-b/sqli-labs
SQLI labs to test error based, Blind boolean based, Time based.
gwill-b/12345
gwill-b/awesome-google-vrp-writeups
🐛 A list of writeups from the Google VRP Bug Bounty program
gwill-b/Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
gwill-b/Bug-Bounty
Here Are Some Collected resource from twitter
gwill-b/byp4xx
Pyhton script for HTTP 40X responses bypassing. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials and fuzzing.
gwill-b/bypass-url-parser
bypass-url-parser
gwill-b/cheatsheets
Just another collection of CheatSheets
gwill-b/coding-notes
I'm compiling comprehensive coding tutorials for many different languages and frameworks! 🐲
gwill-b/Damn-Vulnerable-GraphQL-Application
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
gwill-b/dnsgen-strip
gwill-b/dvws
Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities. NOTE: This project is out of date, please use https://github.com/snoopysecurity/dvws-node
gwill-b/Facebook-BugBounty-Writeups
Collection of Facebook Bug Bounty Writeups
gwill-b/get_user_ip
function to get current guest ip address
gwill-b/getip
gwill-b/getjs-beautifier
gwill-b/gravitational.github.io
gwill-b/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
gwill-b/learn-python3-thw-code
The code to Learn Python3 The Hard Way
gwill-b/log4jpwn
log4j rce test environment and poc
gwill-b/log4shell-everywhere
A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
gwill-b/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
gwill-b/PIL-RCE-Ghostscript-CVE-2018-16509
PoC + Docker Environment for Python PIL/Pillow Remote Shell Command Execution via Ghostscript CVE-2018-16509
gwill-b/pspider-over-list
gwill-b/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
gwill-b/unfurl
Pull out bits of URLs provided on stdin
gwill-b/vapi
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means of Exercises.
gwill-b/vulnerable-nginx
An intentionally vulnerable NGINX setup
gwill-b/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.