Web_Hacking/README.md

Web Hacking + Bug Bounty Tricks

These are my bug bounty / Pentest notes that I have gathered from various sources.

You can also contribute.

List of Vulnerabilities

• API Key Leak
• CSRF
• Dom Clobbering
• File Upload
• IDOR
• JWT Attacks
• NoSQL Injection
• Open Redirect
• Race Condition
• SSRF
• XSS

Bypass Techniques

• 2FA / OTP Bypass
• 403 Bypass
• 429 Bypass
• Captcha Bypass
• Reset Password Bypass
• CSP Bypass

Recon & OSINT Techniques

• Recon

Top Tools & Extensions

• LoggerPlusPlus (Burp extension)

Will always be updated ...