A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

Top disclosed reports from HackerOne

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

Reverse proxies cheatsheet

Burp Plugin to Bypass WAFs through the insertion of Junk Data

[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻

Check subdomains for subdomain takeovers and other DNS tomfoolery

Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery

Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers

Automated Tool for Testing Header Based Blind SQL Injection

jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice

A hacking tool for bug bounties. Sharing and modifying is encouraged!

Self-hosted passive subdomain continous monitoring tool.

POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.

Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)

This script Crawl the website and find the urls that contains html forms.

Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts

This script can be used to find html forms in the list of endpoints/urls.

All About My Recon

Burp Plugin to Bypass WAFs through the insertion of Junk Data