Commit graph

226 commits

Author SHA1 Message Date
Evgeniy Yakovchuk
95f1c862fe Adding link to the XXE section 2017-09-28 17:40:40 +03:00
Evgeniy Yakovchuk
793328b4cf Make bold headings 2017-09-28 17:39:50 +03:00
Evgeniy Yakovchuk
9a07dd802e Merge pull request #13 from EdOverflow/sp1d3r-xxe-add
Creating XXE section
2017-09-28 17:37:59 +03:00
Evgeniy Yakovchuk
7201894c28 Creating XXE section
And adding some payloads:)
2017-09-28 17:33:22 +03:00
EdOverflow
6a8394db98 Merge pull request #12 from kuromatae/master
XSLT Injection Cheat Sheet
2017-09-28 15:15:49 +02:00
Yasin Soliman
36f6a47a90 [Tools] Add HackerTarget free tools link 2017-09-28 10:54:14 +01:00
kuromatae
71a7127bbc Merge pull request #1 from kuromatae/patch-1
Patch 1
2017-09-28 11:12:19 +02:00
kuromatae
b96a10fdc5 Add XSLT to Cheat Sheet 2017-09-28 11:09:59 +02:00
kuromatae
183d8c6d50 Fixed file name 2017-09-28 11:05:37 +02:00
kuromatae
afde105029 Added XSLT Injection 2017-09-28 11:04:55 +02:00
Yasin Soliman
3dc01e25d2 [XSS] additional cleanup of Flash refs 2017-09-27 19:57:21 +01:00
Yasin Soliman
c0582d53ab [XSS] clean up Flash payloads and add note 2017-09-27 19:48:38 +01:00
Yasin Soliman
c7775ecdbc [XSS] Add collection of SWF XSS payloads
Sourced from personal notes, Cure53 Flashbang (https://github.com/cure53/Flashbang/blob/master/flash-files/index.html) and other sources
2017-09-27 19:45:22 +01:00
EdOverflow
967d3d5381 Add kuromatae to "Contributors" section. 2017-09-27 19:07:59 +02:00
Yasin Soliman
dabf098e8b Merge pull request #11 from kuromatae/master
New bountyplatform - add Yogosha
2017-09-27 18:06:51 +01:00
kuromatae
fc48602f94 Update bugbountyplatforms.md
Added Yogosha
2017-09-27 18:54:53 +02:00
kuromatae
517e25abe9 Update bugbountyplatforms.md 2017-09-27 18:51:37 +02:00
Yasin Soliman
2b28b977e3 [Recon] Add extra web-based tools for web recon 2017-09-27 17:45:32 +01:00
EdOverflow
a2160dfb73 Add neutrinoguy to "Contributors" section. 2017-09-27 18:39:57 +02:00
EdOverflow
f7a660332e Merge pull request #10 from neutrinoguy/master
Added 3 More Bugbounty platforms
2017-09-27 18:39:01 +02:00
Aagam Shah
e0394bfd2b Added 3 More Bugbounty platforms 2017-09-27 22:07:06 +05:30
Yasin Soliman
1d453f4c25 Merge pull request #9 from yasinS/ffmpeg-lfi
[LFI] Add explanation and PoC for FFmpeg LFD
2017-09-27 17:29:39 +01:00
Yasin Soliman
beb7e19ffb Add explanation and PoC for FFmpeg LFD 2017-09-27 17:27:43 +01:00
EdOverflow
07e3346ecb Merge pull request #8 from yasinS/patch-1
[Books] update list with categories and extra references
2017-09-27 18:16:11 +02:00
Yasin Soliman
f18db72345 Update books list: categories & useful references 2017-09-27 17:11:24 +01:00
EdOverflow
cc6dce22f4 Update README.md 2017-09-27 17:58:03 +02:00
EdOverflow
fa55da4aeb Create books.md 2017-09-27 17:58:00 +02:00
EdOverflow
fd96af30dc Update bugbountyplatforms.md 2017-09-27 17:56:09 +02:00
EdOverflow
10dadcffe1 Update open-redirect.md 2017-09-27 17:48:44 +02:00
EdOverflow
21c7485743 Update special-tools.md 2017-09-27 17:47:27 +02:00
EdOverflow
c708b9e110 Update README.md 2017-09-27 17:44:34 +02:00
EdOverflow
635f99b2c4 Create bugbountyplatforms.md 2017-09-27 17:44:30 +02:00
EdOverflow
9eef83ab7d Update template-injection.md 2017-09-12 17:23:23 +02:00
EdOverflow
35a668facf Update lfi.md 2017-09-12 17:20:05 +02:00
EdOverflow
8ed19686f1 Add Incapsula WAF XSS Bypasses. 2017-09-12 17:18:29 +02:00
EdOverflow
d214da501e Add more CRLF payloads. 2017-09-12 17:16:22 +02:00
EdOverflow
f2be899e2e Update recon.md 2017-09-09 17:09:15 +02:00
EdOverflow
0bbcf3fe16 Update special-tools.md 2017-09-06 16:33:54 +02:00
EdOverflow
b66d853a01 Update recon.md 2017-09-06 14:41:35 +02:00
EdOverflow
5ece0cf4f5 Update recon.md 2017-09-06 13:17:43 +02:00
EdOverflow
686991d568 Add "Sublist3r One-liner". 2017-09-06 13:04:04 +02:00
EdOverflow
8b34edd05b Add Safari XSS Vector by @mramydnei 2017-08-31 18:43:12 +02:00
EdOverflow
eff422e763 Link to recon.md in README.md. 2017-08-31 18:37:33 +02:00
EdOverflow
ca81a26832 Create recon.md 2017-08-31 18:36:39 +02:00
EdOverflow
e42af5d69e Merge branch 'master' of github.com:EdOverflow/bugbounty-cheatsheet 2017-08-28 16:37:01 +02:00
EdOverflow
2842feec7b Add unicode XSS payload. 2017-08-28 16:36:49 +02:00
EdOverflow
1771dcc14d s/ouput/output 2017-08-23 15:42:46 +01:00
EdOverflow
f0396aa116 s/Sepcial/Special/
Fix #6.
2017-08-19 17:14:52 +01:00
EdOverflow
27cb382451 Merge branch 'master' of github.com:EdOverflow/bugbounty-cheatsheet 2017-08-17 18:20:57 +01:00
EdOverflow
eb867f6faf @vivekchsm found the first Chrome XSS-Auditor bypass. 2017-08-17 18:20:49 +01:00