🕸️Web-AppSec

If you enjoy what I do, please support me Buy Me Ko-fi! https://ko-fi.com/h0tak88r

Bugs Advanced Exploitation

[!bug] HTB: Corporate | 0xdf hacks stuff

Resolved Reports

[!Important] Top Discloused ReportsGitHub - reddelexc/hackerone-reports: Top disclosed reports from HackerOne ⭐

Reports | Bugreader

Blind , CSRF … POC

[!NOTE] Free Hosting Login to your account - InfinityFree

Articles

All Web Security Academy topics | Web Security Academy - PortSwigger ⭐

Cloud

Blogs - RedHunt Labs

Git Books

[!important]

• HackTricks

• Payloads All The Things

• Exploit Notes

• HowToHunt.md \| HowToHunt

Lists

• Crypto-Cat List GitHub - Crypto-Cat/CTF: CTF chall write-ups, files, scripts etc (trying to be more organised LOL)

• Lists for coding, AI , Cybersecurity GitHub - 0xor0ne/awesome-list: Cybersecurity oriented awesome list

• Books , Tools , TalksGitHub - nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters: A list of resources for those interested in getting started in bug bounties

• Jhaddix Bookmarks pentest-bookmarks/wiki/BookmarksList.wiki at master · jhaddix/pentest-bookmarks · GitHub

• Books list GitHub - yeahhub/Hacking-Security-Ebooks: Top 100 Hacking & Security E-Books (Free Download)

Mind Maps

Xmind Share - Xmind - Mind Mapping App

Write ups

Blog - Security CipherBlog - Black Hills Information SecurityAll Articles - PortSwigger Research ⭐ Blog - Pentester Land ⭐

• medium but only Cyber Security shit InfoSec Write-ups⭐ Facebook Writeups

[!important] Writeups - Pentester Land ⭐

personal writeups

All Things Security⭐

[!bug] James Kettle upcoming talks & research portfolio

Monke's Security BlogWriteups Archives - Labs DetectifyBlog Posts | Corben Leo ⭐ Who Am I ? | KARIM ASHRAF SPACE. ⭐ blue team defense labs Writeups - Ahmad Halabi ⭐ justAhmed's Blog ⭐ Youssef Sammouda⭐ Mohamed Sayed - Blog ⭐ ~/kpwn$ ⭐ Orange ⭐ Yassine Aboukir – Application security engineering, consulting and bug bounties ⭐

[!bug] Youssef Sammouda⭐

[!bug] POSIX ⭐ HTB

Boschko Security BlogVickie Li's Security Bloghome · Joseph Thacker

[!important] LLM Pentesting Embrace The Red · Embrace The Red

[!important] XSS Site Unreachable

Tools

jhaddix (jhaddix) / Repositories · GitHubXmind Share - Xmind - Mind Mapping Appoffsec.tools - A vast collection of security toolstomnomnom (Tom Hudson) / Following · GitHub

Creators

securitycreatorstalks.md

CTFs

CryptoCat's CTF writeups | CTF WriteupsA guide to get started with CTFs & Hacking : r/Btechtards ⭐ CTFtime.org / All about CTF (Capture The Flag)Bienvenue [Root Me : plateforme d'apprentissage dédiée au Hacking et à la Sécurité de l'Information]picoCTF - CMU Cybersecurity Competition

Walkthroughs

CryptoCat's CTF writeups | CTF Writeups

Books

Resources-for-Beginner-Bug-Bounty-Hunters/assets/books.md at master · nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters · GitHub

Programming Languages

[!bug] The Modern [[JS]] Tutorial Online Gitbook The Modern JavaScript Tutorial

BurpSuite Plugins

• Make BurpSuite Extensions

  • GitHub - snoopysecurity/awesome-burp-extensions: A curated list of amazingly awesome Burp Extensions

• Save Projects Extension

  • GitHub - Sysc4ll3r/SeriaLog: SeriaLog - BurpSuite Extension for Advanced Logging and State Management

• XSS to RCE

• SSRF to RCE

• XXE to RCE

• SQLI to RCE

• File Upload to RCE

• Web-Sec in Arabic