Bug Hunter Handbook

Search

⌃K

Bug Hunter Handbook

Search

⌃K

Getting Started in InfoSec and Bug Bounties.

Checklists / Guides

Useful Twitter Threads

List of Vulnerabilities

Recon and OSINT

Cross Site Scripting (XSS)

Cross Origin Resource Sharing (CORS)

Local / Remote File Inclusion (LFI / RFI)

Server Side Request Forgery (SSRF)

Remote Code Execution (RCE)

XML Entity Injecton (XXE)

Price Manipulation

Directory / Path Traversal

Cross Site Request Forgery (CSRF)

Login Page Issues

Deserialization Attacks

Account Takeover

Insecure Direct Object References (IDOR)

Business Logic Flaws

Rate Limit Bypass / 2FA / OTP Bypass

Prototype Pollution

Mobile Security

Fuzzing / Wordlists

BugBounty Short Write-ups

Burp Suite Tips and Tricks

HackerOne Reports

Response Manipulation

Client Vs Server Side Vulnerabilities

Chaining of Bugs

Bug Bounty Automation

Oneliner Collections

Recon One Liners

Setting up burp collaborator

Admin Panel PwN

Credential Stuffing / Dump / HaveibeenPwned?

Nuclei Template

Other BugBounty Repos / Tips

Powered By GitBook

List of Vulnerabilities

Check Sub-Section for resources.

Useful Twitter Threads

Recon and OSINT

Last modified 2yr ago

Copy link