Tips and Tutorials for Bug Bounty and also Penetration Tests.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

BugBounty_CheatSheet

A curated list of available Bug Bounty & Disclosure Programs and Write-ups.

Bug Bounty Testing Essential Guideline : Startup Bug Hunters

Juniper Firewalls CVE-2023-36845 - RCE

These Repositories About My Recon Methodology To Give Some Idea For Other Hunter How To Do Recon

Barcha is your Swiss‑Army knife for SQL Injection reconnaissance 🔍. Written in Go, it automates: Shodan enumeration of SSL hosts 🕵️‍♂️ Liveness & redirect checks (ignores bad certs) 🔄 Automated Ghauri tests for each host 🛡️ SQLite logging of every scan 🔖

FourOhMe is a tool for testing HTTP headers on a website in order to try to bypass 40* HTTP codes. Written in Go, so easy to install and fast out of the box.

Automate Nuclei scans and streamline bug hunting workflows

HuntersEye is designed for Bug Bounty Hunters, and Security Researchers to monitor new subdomains and certificates for specified domains. The primary goal is to streamline and expedite the process of monitoring newly registered subdomains and SSL certificates related to specified target domains.

a medium scraper that you need.

Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.

Wayback CDX Domain Filter

CVE-2022-40297 - Proof of Concept: Privilege escalation in Ubuntu Touch 16.04 - by PIN Bruteforce

OneLiner

Scripts for hunting bugs.

A tool for enumerating a large number of subdomains, ideal for Zero-Day investigations and Bug Bounty hunting.

🔍 Automate bug detection and security scanning across multiple languages, create GitHub issues, and fix simple problems effortlessly.