Bug Bounty Cheat Sheet
Reference 🔎 Vulnerabilities Bug Bounty Platforms XSS Books SQLi Special Tools SSRF Recon CRLF Injection Practice Platforms CSV Injection Bug Bounty Tips LFI XXE RCE Open Redirect Crypto Template Injection Content Injection XSLT Injection Contributing We welcome contributions from the public. Using the issue tracker 💡 The issue tracker is the preferred channel for bug reports and features requests. Issues and labels 🏷 Our bug tracker utilizes several labels to help organize and identify issues. Guidelines for bug reports 🐛 Use the GitHub issue search — check if the issue has already been reported. Style Guide We like to keep our Markdown files as uniform as possible. So if you submit a PR, make sure to follow this style guide (we will not be angry if you do not). Cheat sheet titles should start with ##. Subheadings should be made bold. (**Subheading**) Add newlines after subheadings and code blocks. Code blocks should use three backticks. (```) Make sure to use syntax highlighting whenever possible. Contributors EdOverflow GerbenJavado jon_bottarini sp1d3r yasinS neutrinoguy kuromatae And many more ...
FEATURES
ALTERNATIVES
Project hosting scripts for implementing Pass the Hash mitigations with PtHTools module commands.
Teaching Security provides educational resources and lessons for teaching cybersecurity concepts to high school students.
Comprehensive tutorial series on ARM Assembly covering various topics.
A practical guide to developing a comprehensive security monitoring and incident response strategy, covering incident response fundamentals, threat analysis, and data analysis.
A compilation of Red Teaming resources including cheatsheets, notes, scripts, and practice platforms for cybersecurity learning and skill development.
Cheat sheet with common enumeration and attack methods for Windows Active Directory.
Enhance the security and privacy of Apple silicon Mac computers with incremental changes and user capability.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.