Nasur Ullah's Projects
bash scripting thing !
JMX enumeration and attacking tool.
BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
Blind XSS with SVG
Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
Blog Site
Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
A repository that includes all the important wordlists used while bug hunting.
The aim of this Reposiotry is to Provide the Resoursces of Learning at one place For Bug Bounty Hunters.
Bugbounty Resources
A list of interesting payloads, tips and tricks for bug bounty hunters.
Tips and Tutorials for Bug Bounty and also Penetration Tests.
List of reporting templates I have used since I started doing BBH.
A collection of tools I wrote for bug bounty or hacking and don't mind publishing it :smile:
Burp Suite extension to easily export sub domains
Performing SQLInjection test on Burp Suite Bulk Requests using SQLMap
Fuzz 401/403/404 pages for bypasses
This Python script allows you to fetch detailed car model data from the Car Query API and export it to a CSV file. With powerful filtering options, you can tailor your search by manufacturer, model, variant, production year, and more. Explore, analyze, and visualize automotive data effortlessly!
Simple scripts that allows you to bypass content filtering in ChatGPT through the API
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Cisco Adaptive Security Appliance and FTD Unauthorized Remote File Reading
Prototype Pollution and useful Script Gadgets
Gathers urls from common crawl
CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
My solutions of CTFs
A list of Capture The Flag (CTF) frameworks, libraries, resources and software for started/experienced CTF players 🚩
Everything needed for doing CTFs