Piyush Jain's Projects
Sample images for testing Exif metadata retrieval.
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Collection of Facebook Bug Bounty Writeups
Describe how to use ffuf different options with examples
๐ Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
My subdomain enumeration script. It's unique in the way it is built upon.
Learn Blockchain, Solidity, and Full Stack Web3 Development with Javascript
Collection of fuzzing payloads and corpus from all around added as sub modules
fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Automates Arjun and speed up parameter bruteforcing
A shorter, less intimidating list of infosec resources helpful for anyone trying to learn.
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
Find leaked secrets via github search
Tools to perform basic search on GitHub.
This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com
A fast and minimal JS endpoint extractor
Useful Google Dorks for WebSecurity and Bug Bounty
A tool to check a bunch of URLs that contain reflecting params.
HackBar plugin for Burpsuite
bug bounty disclosed reports
Top disclosed reports from HackerOne
Scripts to perform basic ethical hacking
This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Tutorials and Things to Do while Hunting Vulnerability.