├── Books ├── API-security.pdf ├── Book of tips_ Aditya Shende pdf.pdf ├── Readme.md └── pbbt.pdf ├── Bug Bounty Tips ├── Readme.md └── files │ ├── 2020-tips.md │ ├── 2021-tips.md │ ├── Android-Pentest.md │ ├── April-2021.md │ ├── August-2021.md │ ├── December-2020.md │ ├── February-2021.md │ ├── January-2021.md │ ├── July-2021.md │ ├── June-2021.md │ ├── March-2021.md │ ├── May-2021.md │ ├── November-2020.md │ ├── October-2020.md │ ├── September-2020.md │ ├── September-2021.md │ ├── img │ ├── - CVE-2020-13942 Apache Unomi Remote Code Execution__PoC__{_filters___{_id_ _ _py.mp4 │ ├── 20201007_195906.jpg │ ├── RCE.png │ ├── acto.png │ ├── arbitrary_location.jpg │ ├── auth_bypass.png │ ├── degoogle.jpg │ ├── gitdork.jpg │ ├── graphql-1.jpg │ ├── ios-mindmap.jpg │ ├── reponse-splitting.jpg │ ├── sqli-2.jpg │ └── waf-bypass.jpg │ └── oneliners.md ├── Bulk-input ├── payload_1.txt └── payload_2.txt ├── Checklist ├── OWASP │ ├── Mobile │ │ ├── MSTG-EN.pdf │ │ ├── Mobile_App_Security_Checklist-English_1.1.2.xlsx │ │ └── Readme.md │ ├── Readme.md │ └── Web │ │ ├── OWASPv4_Checklist.xlsx │ │ ├── Readme.md │ │ └── owasp-test-guide.pdf └── Readme.md ├── Code-Injection └── Code_injection_cheatsheet.md ├── Content-discovery ├── FTP default password ├── FTP default username ├── Readme.md ├── asp_lowercase.txt ├── bak.txt ├── common-discovery.txt ├── content_discovery_all-1.txt ├── httparchive_django_2020_11_17.txt ├── httparchive_flask_2020_11_17.txt ├── jsp.txt ├── php.txt ├── raft-lower.txt └── wordpress.txt ├── Dorks ├── Github_dorks.md ├── Google-dorks.txt ├── Google_dorks.md ├── Responsible-disclosure-dorks.txt └── git-keywords.txt ├── Files ├── OSCP_Toolkit.xlsx └── Readme.md ├── Fuzzing ├── Custom_list.txt └── Readme.md ├── LFI ├── Payload.txt └── Readme.md ├── Mark-math-bulk-payload ├── 1.md └── 2.md ├── Oneliners └── Readme.md ├── Pentest-master ├── BUG BOUNTY │ ├── CLIENTS.md │ ├── CLIENTS │ │ ├── SMB Server beb9a02922e74f849961d241b053ca33.md │ │ ├── SQL Server.md │ │ └── UP A FILE SERVER 43667d6f827f4c4b8342731d5e92dd1e.md │ ├── ENUMERATION.md │ ├── OWASP.md │ ├── OWASP │ │ ├── BROKEN AUTHENTICATION 410e8796ff124658bb58d85820b5be16.md │ │ ├── BROKEN AUTHENTICATION 410e8796ff124658bb58d85820b5be16 │ │ │ └── SESSION HIJACKING 5680569d402c459c82b312dd25038512.md │ │ ├── DATA EXPOSURE 5dc2ec65cd434ea1a378b4d974e94314.md │ │ └── SQL INJECTION 688d8e00caf7475fa4928dfa53061993.md │ ├── PAYLOADS.md │ ├── PENTEST.md │ ├── VULNERABILITIES.md │ └── VULNERABILITIES │ │ ├── FILE_UPLOAD.md │ │ ├── REQUEST_SMUGGLING.md │ │ ├── REQUEST_SMUGGLING │ │ └── EXAMPLE_REPORT.md │ │ ├── SSRF.md │ │ ├── XEE.md │ │ └── XSS.md └── README.md ├── README.md ├── Redirect └── Readme.md ├── Rev-shell ├── Readme.md ├── linpeas.sh ├── metasploit_cheatsheet.md ├── php_rev_shell.php ├── php_web_shell.php └── powny-shell.php ├── SQL-Payloads ├── Readme.md ├── SQL-payloads.md ├── assets │ ├── 1725186738108.jpg │ ├── Readme.md │ └── sqli_auth_bypass.jpg ├── auth_bypass_sqli.txt ├── error_sqli.txt ├── generic_sqli.txt ├── time_based_sqli.txt └── union_baswd_sqli.txt ├── SSRF-Payloads └── ssrf-payloads.txt ├── SSTI-Payloads └── SSTI.txt ├── Swagger-ui ├── Readme.md └── Swagger HTMLi Exploit │ ├── test.json │ └── test.yaml ├── Tools ├── Readme.md ├── Tools.md ├── other-tools.md └── tools-setup.sh ├── XSS-payloads ├── AwesomeXSS-master │ ├── Database │ │ ├── event-handlers.md │ │ ├── jackmasa-mind-map.png │ │ └── polyglot.png │ └── README.md ├── Custom-XSS-Payload.md ├── Readme.md ├── evilsvg-master │ ├── README.md │ ├── evil.svg │ ├── php-info.php │ └── rce.svg └── xss-payload-list-master │ ├── Intruder │ ├── xss-payload-part 1.txt │ ├── xss-payload-part 2.txt │ ├── xss-payload-part 3.txt │ └── xss-payload-part 4.txt │ └── README.md ├── XXE-payloads ├── XXE-cheetsheat.md └── XXE-payloads.md ├── blogs ├── Readme.md └── files │ ├── Bug_bounty_blogs.md │ ├── bug.jpg │ ├── facebook-bugs.md │ └── img │ ├── Readme.md │ ├── ajax.png │ ├── medium.png │ ├── security-creators.png │ └── synk.png └── spotlights └── Readme.md /Books/API-security.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Books/API-security.pdf -------------------------------------------------------------------------------- /Books/Book of tips_ Aditya Shende pdf.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Books/Book of tips_ Aditya Shende pdf.pdf -------------------------------------------------------------------------------- /Books/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Books/Readme.md -------------------------------------------------------------------------------- /Books/pbbt.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Books/pbbt.pdf -------------------------------------------------------------------------------- /Bug Bounty Tips/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/Readme.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/2020-tips.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/2020-tips.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/2021-tips.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/2021-tips.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/Android-Pentest.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/Android-Pentest.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/April-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/April-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/August-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/August-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/December-2020.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/December-2020.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/February-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/February-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/January-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/January-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/July-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/July-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/June-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/June-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/March-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/March-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/May-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/May-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/November-2020.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/November-2020.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/October-2020.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/October-2020.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/September-2020.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/September-2020.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/September-2021.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/September-2021.md -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/- CVE-2020-13942 Apache Unomi Remote Code Execution__PoC__{_filters___{_id_ _ _py.mp4: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/- CVE-2020-13942 Apache Unomi Remote Code Execution__PoC__{_filters___{_id_ _ _py.mp4 -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/20201007_195906.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/20201007_195906.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/RCE.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/RCE.png -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/acto.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/acto.png -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/arbitrary_location.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/arbitrary_location.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/auth_bypass.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/auth_bypass.png -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/degoogle.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/degoogle.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/gitdork.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/gitdork.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/graphql-1.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/graphql-1.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/ios-mindmap.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/ios-mindmap.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/reponse-splitting.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/reponse-splitting.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/sqli-2.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/sqli-2.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/img/waf-bypass.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/img/waf-bypass.jpg -------------------------------------------------------------------------------- /Bug Bounty Tips/files/oneliners.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bug Bounty Tips/files/oneliners.md -------------------------------------------------------------------------------- /Bulk-input/payload_1.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bulk-input/payload_1.txt -------------------------------------------------------------------------------- /Bulk-input/payload_2.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Bulk-input/payload_2.txt -------------------------------------------------------------------------------- /Checklist/OWASP/Mobile/MSTG-EN.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Checklist/OWASP/Mobile/MSTG-EN.pdf -------------------------------------------------------------------------------- /Checklist/OWASP/Mobile/Mobile_App_Security_Checklist-English_1.1.2.xlsx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Checklist/OWASP/Mobile/Mobile_App_Security_Checklist-English_1.1.2.xlsx -------------------------------------------------------------------------------- /Checklist/OWASP/Mobile/Readme.md: -------------------------------------------------------------------------------- 1 | # Mobile 2 | -------------------------------------------------------------------------------- /Checklist/OWASP/Readme.md: -------------------------------------------------------------------------------- 1 | # OWASP Checklist and Testing Guide 2 | -------------------------------------------------------------------------------- /Checklist/OWASP/Web/OWASPv4_Checklist.xlsx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Checklist/OWASP/Web/OWASPv4_Checklist.xlsx -------------------------------------------------------------------------------- /Checklist/OWASP/Web/Readme.md: -------------------------------------------------------------------------------- 1 | # Web 2 | -------------------------------------------------------------------------------- /Checklist/OWASP/Web/owasp-test-guide.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Checklist/OWASP/Web/owasp-test-guide.pdf -------------------------------------------------------------------------------- /Checklist/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Checklist/Readme.md -------------------------------------------------------------------------------- /Code-Injection/Code_injection_cheatsheet.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Code-Injection/Code_injection_cheatsheet.md -------------------------------------------------------------------------------- /Content-discovery/FTP default password: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/FTP default password -------------------------------------------------------------------------------- /Content-discovery/FTP default username: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/FTP default username -------------------------------------------------------------------------------- /Content-discovery/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/Readme.md -------------------------------------------------------------------------------- /Content-discovery/asp_lowercase.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/asp_lowercase.txt -------------------------------------------------------------------------------- /Content-discovery/bak.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/bak.txt -------------------------------------------------------------------------------- /Content-discovery/common-discovery.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/common-discovery.txt -------------------------------------------------------------------------------- /Content-discovery/content_discovery_all-1.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/content_discovery_all-1.txt -------------------------------------------------------------------------------- /Content-discovery/httparchive_django_2020_11_17.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/httparchive_django_2020_11_17.txt -------------------------------------------------------------------------------- /Content-discovery/httparchive_flask_2020_11_17.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/httparchive_flask_2020_11_17.txt -------------------------------------------------------------------------------- /Content-discovery/jsp.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/jsp.txt -------------------------------------------------------------------------------- /Content-discovery/php.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/php.txt -------------------------------------------------------------------------------- /Content-discovery/raft-lower.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/raft-lower.txt -------------------------------------------------------------------------------- /Content-discovery/wordpress.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Content-discovery/wordpress.txt -------------------------------------------------------------------------------- /Dorks/Github_dorks.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Dorks/Github_dorks.md -------------------------------------------------------------------------------- /Dorks/Google-dorks.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Dorks/Google-dorks.txt -------------------------------------------------------------------------------- /Dorks/Google_dorks.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Dorks/Google_dorks.md -------------------------------------------------------------------------------- /Dorks/Responsible-disclosure-dorks.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Dorks/Responsible-disclosure-dorks.txt -------------------------------------------------------------------------------- /Dorks/git-keywords.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Dorks/git-keywords.txt -------------------------------------------------------------------------------- /Files/OSCP_Toolkit.xlsx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Files/OSCP_Toolkit.xlsx -------------------------------------------------------------------------------- /Files/Readme.md: -------------------------------------------------------------------------------- 1 | # Files 2 | -------------------------------------------------------------------------------- /Fuzzing/Custom_list.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Fuzzing/Custom_list.txt -------------------------------------------------------------------------------- /Fuzzing/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Fuzzing/Readme.md -------------------------------------------------------------------------------- /LFI/Payload.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/LFI/Payload.txt -------------------------------------------------------------------------------- /LFI/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/LFI/Readme.md -------------------------------------------------------------------------------- /Mark-math-bulk-payload/1.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Mark-math-bulk-payload/1.md -------------------------------------------------------------------------------- /Mark-math-bulk-payload/2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Mark-math-bulk-payload/2.md -------------------------------------------------------------------------------- /Oneliners/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Oneliners/Readme.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/CLIENTS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/CLIENTS.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/CLIENTS/SMB Server beb9a02922e74f849961d241b053ca33.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/CLIENTS/SMB Server beb9a02922e74f849961d241b053ca33.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/CLIENTS/SQL Server.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/CLIENTS/SQL Server.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/CLIENTS/UP A FILE SERVER 43667d6f827f4c4b8342731d5e92dd1e.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/CLIENTS/UP A FILE SERVER 43667d6f827f4c4b8342731d5e92dd1e.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/ENUMERATION.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/ENUMERATION.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/OWASP.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/OWASP.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/OWASP/BROKEN AUTHENTICATION 410e8796ff124658bb58d85820b5be16.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/OWASP/BROKEN AUTHENTICATION 410e8796ff124658bb58d85820b5be16.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/OWASP/BROKEN AUTHENTICATION 410e8796ff124658bb58d85820b5be16/SESSION HIJACKING 5680569d402c459c82b312dd25038512.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/OWASP/BROKEN AUTHENTICATION 410e8796ff124658bb58d85820b5be16/SESSION HIJACKING 5680569d402c459c82b312dd25038512.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/OWASP/DATA EXPOSURE 5dc2ec65cd434ea1a378b4d974e94314.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/OWASP/DATA EXPOSURE 5dc2ec65cd434ea1a378b4d974e94314.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/OWASP/SQL INJECTION 688d8e00caf7475fa4928dfa53061993.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/OWASP/SQL INJECTION 688d8e00caf7475fa4928dfa53061993.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/PAYLOADS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/PAYLOADS.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/PENTEST.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/PENTEST.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/VULNERABILITIES.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/VULNERABILITIES.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/VULNERABILITIES/FILE_UPLOAD.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/VULNERABILITIES/FILE_UPLOAD.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/VULNERABILITIES/REQUEST_SMUGGLING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/VULNERABILITIES/REQUEST_SMUGGLING.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/VULNERABILITIES/REQUEST_SMUGGLING/EXAMPLE_REPORT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/VULNERABILITIES/REQUEST_SMUGGLING/EXAMPLE_REPORT.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/VULNERABILITIES/SSRF.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/VULNERABILITIES/SSRF.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/VULNERABILITIES/XEE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/VULNERABILITIES/XEE.md -------------------------------------------------------------------------------- /Pentest-master/BUG BOUNTY/VULNERABILITIES/XSS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/BUG BOUNTY/VULNERABILITIES/XSS.md -------------------------------------------------------------------------------- /Pentest-master/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Pentest-master/README.md -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/README.md -------------------------------------------------------------------------------- /Redirect/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Redirect/Readme.md -------------------------------------------------------------------------------- /Rev-shell/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Rev-shell/Readme.md -------------------------------------------------------------------------------- /Rev-shell/linpeas.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Rev-shell/linpeas.sh -------------------------------------------------------------------------------- /Rev-shell/metasploit_cheatsheet.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Rev-shell/metasploit_cheatsheet.md -------------------------------------------------------------------------------- /Rev-shell/php_rev_shell.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Rev-shell/php_rev_shell.php -------------------------------------------------------------------------------- /Rev-shell/php_web_shell.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Rev-shell/php_web_shell.php -------------------------------------------------------------------------------- /Rev-shell/powny-shell.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Rev-shell/powny-shell.php -------------------------------------------------------------------------------- /SQL-Payloads/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/Readme.md -------------------------------------------------------------------------------- /SQL-Payloads/SQL-payloads.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/SQL-payloads.md -------------------------------------------------------------------------------- /SQL-Payloads/assets/1725186738108.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/assets/1725186738108.jpg -------------------------------------------------------------------------------- /SQL-Payloads/assets/Readme.md: -------------------------------------------------------------------------------- 1 | # Assets Folder 2 | -------------------------------------------------------------------------------- /SQL-Payloads/assets/sqli_auth_bypass.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/assets/sqli_auth_bypass.jpg -------------------------------------------------------------------------------- /SQL-Payloads/auth_bypass_sqli.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/auth_bypass_sqli.txt -------------------------------------------------------------------------------- /SQL-Payloads/error_sqli.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/error_sqli.txt -------------------------------------------------------------------------------- /SQL-Payloads/generic_sqli.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/generic_sqli.txt -------------------------------------------------------------------------------- /SQL-Payloads/time_based_sqli.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/time_based_sqli.txt -------------------------------------------------------------------------------- /SQL-Payloads/union_baswd_sqli.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SQL-Payloads/union_baswd_sqli.txt -------------------------------------------------------------------------------- /SSRF-Payloads/ssrf-payloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SSRF-Payloads/ssrf-payloads.txt -------------------------------------------------------------------------------- /SSTI-Payloads/SSTI.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/SSTI-Payloads/SSTI.txt -------------------------------------------------------------------------------- /Swagger-ui/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Swagger-ui/Readme.md -------------------------------------------------------------------------------- /Swagger-ui/Swagger HTMLi Exploit/test.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Swagger-ui/Swagger HTMLi Exploit/test.json -------------------------------------------------------------------------------- /Swagger-ui/Swagger HTMLi Exploit/test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Swagger-ui/Swagger HTMLi Exploit/test.yaml -------------------------------------------------------------------------------- /Tools/Readme.md: -------------------------------------------------------------------------------- 1 | # Penetration Testing Tools 2 | 3 | -------------------------------------------------------------------------------- /Tools/Tools.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Tools/Tools.md -------------------------------------------------------------------------------- /Tools/other-tools.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Tools/other-tools.md -------------------------------------------------------------------------------- /Tools/tools-setup.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/Tools/tools-setup.sh -------------------------------------------------------------------------------- /XSS-payloads/AwesomeXSS-master/Database/event-handlers.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/AwesomeXSS-master/Database/event-handlers.md -------------------------------------------------------------------------------- /XSS-payloads/AwesomeXSS-master/Database/jackmasa-mind-map.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/AwesomeXSS-master/Database/jackmasa-mind-map.png -------------------------------------------------------------------------------- /XSS-payloads/AwesomeXSS-master/Database/polyglot.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/AwesomeXSS-master/Database/polyglot.png -------------------------------------------------------------------------------- /XSS-payloads/AwesomeXSS-master/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/AwesomeXSS-master/README.md -------------------------------------------------------------------------------- /XSS-payloads/Custom-XSS-Payload.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/Custom-XSS-Payload.md -------------------------------------------------------------------------------- /XSS-payloads/Readme.md: -------------------------------------------------------------------------------- 1 | # XSS Payloads 2 | -------------------------------------------------------------------------------- /XSS-payloads/evilsvg-master/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/evilsvg-master/README.md -------------------------------------------------------------------------------- /XSS-payloads/evilsvg-master/evil.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/evilsvg-master/evil.svg -------------------------------------------------------------------------------- /XSS-payloads/evilsvg-master/php-info.php: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /XSS-payloads/evilsvg-master/rce.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/evilsvg-master/rce.svg -------------------------------------------------------------------------------- /XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 1.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 1.txt -------------------------------------------------------------------------------- /XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 2.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 2.txt -------------------------------------------------------------------------------- /XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 3.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 3.txt -------------------------------------------------------------------------------- /XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 4.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/xss-payload-list-master/Intruder/xss-payload-part 4.txt -------------------------------------------------------------------------------- /XSS-payloads/xss-payload-list-master/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XSS-payloads/xss-payload-list-master/README.md -------------------------------------------------------------------------------- /XXE-payloads/XXE-cheetsheat.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XXE-payloads/XXE-cheetsheat.md -------------------------------------------------------------------------------- /XXE-payloads/XXE-payloads.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/XXE-payloads/XXE-payloads.md -------------------------------------------------------------------------------- /blogs/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/Readme.md -------------------------------------------------------------------------------- /blogs/files/Bug_bounty_blogs.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/files/Bug_bounty_blogs.md -------------------------------------------------------------------------------- /blogs/files/bug.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/files/bug.jpg -------------------------------------------------------------------------------- /blogs/files/facebook-bugs.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/files/facebook-bugs.md -------------------------------------------------------------------------------- /blogs/files/img/Readme.md: -------------------------------------------------------------------------------- 1 | # Images 2 | -------------------------------------------------------------------------------- /blogs/files/img/ajax.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/files/img/ajax.png -------------------------------------------------------------------------------- /blogs/files/img/medium.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/files/img/medium.png -------------------------------------------------------------------------------- /blogs/files/img/security-creators.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/files/img/security-creators.png -------------------------------------------------------------------------------- /blogs/files/img/synk.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/blogs/files/img/synk.png -------------------------------------------------------------------------------- /spotlights/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/attacker-codeninja/Bug-Hunting-1/HEAD/spotlights/Readme.md --------------------------------------------------------------------------------