This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

Collection of methodology and test case for various web vulnerabilities.

All about bug bounty (bypasses, payloads, and etc)

Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security s…

Shodan Dorks

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.

HackerOne "in scope" domains

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…