Bug Bounty

A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.

Merge /Testing_for_Vertical_Bypassing_Authorization_Schema_WSTG-AUTHZ-00X.md into 4-Web_Application_Security_Testing/05-Authorization_Testing/03-Testing_for_Privilege_Escalation.md

Here is a simple template for the default administration password on ZyXEL devices. I tested it only on two different ZyXEL devices, the authentication flow and the resulting page may differ on other models, so it needs more tests.

id: zyxel-default-password

info:
  name: ZyXEL Default Password
  author: wtzu
  severity: high
  tags: zyxel

requests:
  - raw:
      - |

Jul	AUG	Oct
	17
2020	2021	2022

Bug Bounty

Here are 737 public repositories matching this topic...

swisskyrepo / PayloadsAllTheThings

blaCCkHatHacEEkr / PENTESTING-BIBLE

shmilylty / OneForAll

OWASP / wstg

Merge "Testing_for_Vertical_Bypassing_Authorization_Schema" into

Common Platform Enumeration (CPE) naming schema on information gathering process

Merge REST Assessment CS into WSTG

dstotijn / hetty

EdOverflow / bugbounty-cheatsheet

j3ssie / Osmedeus

commixproject / commix

KathanP19 / HowToHunt

1N3 / IntruderPayloads

EdOverflow / can-i-take-over-xyz

Discourse hosted subdomain takeover possible?

dwisiswant0 / apkleaks

payloadbox / xss-payload-list

devanshbatham / Awesome-Bugbounty-Writeups

projectdiscovery / nuclei-templates

[nuclei-template] default login ZyXEL

projectdiscovery / httpx

codingo / NoSQLMap

TophantTechnology / ARL

ihebski / DefaultCreds-cheat-sheet

vaib25vicky / awesome-mobile-security

Voorivex / pentest-guide

hahwul / WebHackersWeapons

six2dez / reconftw

sa7mon / S3Scanner

inonshk / 31-days-of-API-Security-Tips

haccer / subjack

hisxo / gitGraber

jaeles-project / jaeles

1N3 / Findsploit

daffainfo / AllAboutBugBounty

Related Topics