Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
api-pentestapi-securitybug-bounty-huntersbugbountybypasscheatsheetenumerationexploithackingowasppayloadspenetration-testingpentestreconredteamsecurityvulnerabilityweb-application-securitywebhackingwebsecurity
2FA_OTP_Bypass.md | ||
403 Bypass.md | ||
429 Bypass.md | ||
API Key Leak.md | ||
Captcha Bypass.md | ||
CSP Bypass.md | ||
CSRF.md | ||
Dom Clobbering.md | ||
File Upload.md | ||
IDOR.md | ||
JWT.md | ||
LoggerPlusPlus.md | ||
Login Bypass.md | ||
NoSQL Injection.md | ||
Open Redirect.md | ||
OSINT.md | ||
Race Condition.md | ||
README.md | ||
Recon.md | ||
Reset Password Bypass.md | ||
SQL Injection.md | ||
SSRF.md | ||
XSS.md |
Web Hacking + Bug Bounty Tricks
These are my bug bounty / Pentest notes that I have gathered from various sources.
You can also contribute.
List of Vulnerabilities
- API Key Leak
- CSRF
- DOM Clobbering
- File Upload
- IDOR
- JWT
- NoSQLi
- Open Redirect
- Race Condition
- SQLi
- SSRF
- XSS
Bypass Techniques
Recon & OSINT Techniques
Top Tools & Extensions
All content of this repository will always be updated...