Host Header Vulnerability Scanner Automated Tool

Awesome XSS stuff

Community curated list of public bug bounty and responsible disclosure programs.

Check the CSP of the current website against a list of known bypasses.

OneForAll是一款功能强大的子域收集工具

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

XSS payloads for bypassing WAF. This repository is updating continuously.

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

how to look for Leaked Credentials !

auth-bypass is a collection of common techniques and payloads used to bypass authentication mechanisms during web penetration testing. It includes methods targeting login forms, headers, and logic …

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

All about bug bounty (bypasses, payloads, and etc)

A curated list of available Bug Bounty & Disclosure Programs and Write-ups.

Resources for Windows exploit development

Datadog Agent Linux Install Script

Binaries for the book Practical Malware Analysis

Top disclosed reports from HackerOne

A collection of awesome readme templates to display on your profile

A repository of Language Model Vulnerabilities and Exposures (LVEs).

Cheatsheet for the JavaScript knowledge you will frequently encounter in modern projects.

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.