chr0ll0's Projects
Ressources for bug bounty hunting
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
A list of interesting payloads, tips and tricks for bug bounty hunters.
An entry level resource to learning bug bounty.
Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.
Open source education content for the researcher community
Penetration Testing / OSCP Biggest Reference Bank / Cheatsheet
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 170 other CMSs
Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
List of CTF to learn and practice how to hack
Atlassian JIRA Template injection vulnerability RCE
Pilot program for CVE submission through GitHub
DOM XSS scanner for Single Page Applications
Personal blog
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Course materials for LOL's Free Web Security Class
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
A collection of hacks and one-off scripts
HackTheBox
Internal Network Penetration Test Playbook
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
oscp study
A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam
my oscp prep collection
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' Keepnote. Reconscan in scripts folder.
OSEE Preparation
An open-source intelligence (OSINT) analysis tool leveraging GPT-powered embeddings and vector search engines for efficient data processing
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent