π΅
π΅
π΅
π΅
HowToHunt
Searchβ¦
π΅
π΅
π΅
π΅
HowToHunt
HowToHunt.md
Account Takeover Methodology
Account Takeover Methodology
Application Level DoS
Application Level DoS Methods
Authentication Bypass
2FA Bypasses
OTP Bypass
Broken-Link Hijacking
Broken-Link Hijacking
Broken Auth And Session Management
Session Based Bugs
CMS
Wordpress
Moodle
CORS
CORS
CORS Bypasses
CSRF
CSRF
CSRF Bypass
Finding CVEs
CVES
CheckList
Web Application Pentesting Checklist
Web Checklist by Chintan Gurjar.pdf
Mindmap by Rohit Gautam
Mindmap by Cristian Cornea
Web Page Source Code Review
Web Page Code Review Tips
EXIF Geo Data Not Stripped
EXIF Geo Data Not Stripped
File Upload Bypass
File Upload Bypass
Find Origin IP
Find Origin
GraphQL
GraphQL
HTTP Desync Attack
HTTP_Desync
Host-Header Attack
Host-Header
HTML-Injection
HTML-Injection
IDOR
IDOR
JWT ATTACK
JWT
MFA Bypass
MFA Bypasses
2FA-Bypass
Misconfigurations
Default Credential And Admin Panel
OAuth
OAuth
Open Redirection
Find OpenRedirect Trick
Open Redirection Bypass
Parameter Pollution
Parameter Pollution In Social Sharing Buttons
Password Reset Functionality
MindMap
Password Reset Token Leakage
Account_Takeover_By_Password_Reset_Functionality
Rate Limit
Rate-Limit Bypass
Recon
Recon Workflow
Subdomain Enumeration
SQLi
SQL Injection.md
SSRF
SSRF
Blind SSRF
SSTI
SSTI
Sign Up Functionality
Sign Up Bugs
Sign Up MindMap
Sensitive Info Leaks
Github Recon Method
Github-Dorks
Github Dorks All
Google Dorks
Shodan CVE Dorks
Status Code Bypass
Status_Code_Bypass Tips
403 Bypass
Subdomain Takeover
Subdomain Takeover - Detail Method
Subdomain Takeover - Easy Method
Tabnabbing
Tabnabbing
WAF Bypasses
WAF Bypass Using Headers
Weak Password Policy
Weak Password Policy
XSS
XSS
Automated XSS
XXE
XXE Methods
Powered By
GitBook
HowToHunt.md
β
β
β
β
Some Tutorials and Things to Do while Hunting Particular Vulnerability.
GitBook Link :- https://kathan19.gitbook.io/
GitHub Repo Link :- https://github.com/KathanP19/HowToHunt
- Go to Above GitBook link if you want to read and To Contribute go to Github and and make a Pull Request !!.
Note: You can help me complete this list by making Pull Request and please do mention your twitter handler at the end of the file.
All the credits to all the contributors, without you all it could have never been possible
If you want to know what's added every week then follow me on twitter
https://twitter.com/KathanP19
I post what's updated every weekends.
β
If You Want To Support Project Or Me You Can Buy Me A Coffee
β
β
β
β
β
Contributors β¨
Thanks goes to these wonderful people :
β
β
Kathan Patel
β
β
β
β
Mehedi Hasan Remon
β
β
β
β
Keshav Malik
β
β
β
β
Vivek Kumar Yadav
β
β
β
β
Syed Mushfik Hasan Tahsin
β
β
β
β
Deepak Dhiman
β
β
β
β
maverickNerd
β
β
β
β
Harsha Vardhan
β
β
β
β
Bishal Shrestha
β
β
β
β
Cyber-Pirate
β
β
β
β
Naman Shah
β
β
β
β
ANUGRAH S R
β
β
β
β
Aishwarya Kendle
β
β
β
β
MadMaxx
β
β
β
β
Akshaykerkar
β
β
β
β
Shadab Ansari
β
β
β
β
CowlingBanana
β
β
β
β
Meet
β
β
β
β
Tushar
β
β
β
β
Chintan Gurjar
β
β
β
β
praneeth1998
β
β
β
β
sumitjat
β
β
β
β
Mr_p0tat0
β
β
β
β
ashhadali10
β
β
β
β
Nav-Prak
β
β
β
β
NoBodysSafe
β
β
β
β
Max Boll
β
β
β
β
Yash K
β
β
β
β
febinrev
β
β
β
β
fatinsourav
β
β
β
β
iNoSec2
β
β
β
β
Manas Harsh
β
β
β
β
0xsunil
β
β
β
β
Rakesh
β
β
β
β
Pratyaksh Singh
β
β
β
β
Tamim Hasan
β
β
β
β
Pratish58
β
β
β
β
Kalus
β
β
β
β
Zero (Arif)
β
β
β
β
Chirag Agrawal
β
β
β
β
Kushagra Sarathe
β
β
β
β
RT
β
β
β
β
Anishka Shukla
β
β
β
β
Ikko Ashimine
β
β
β
β
Harshit Raj Singh
β
β
β
β
Sm4rty-1
β
β
β
β
dipakpanchal456
β
β
β
β
Anubhav Singh
β
β
β
β
Anupam Singh
β
β
β
β
Rishi Choudhary
β
β
β
β
Yasser Khan
β
β
β
β
yasser khan
β
β
β
β
Fani Malik Hack
β
β
β
β
dhruvin shah
β
β
β
β
TCode110
β
β
β
β
Faizee Asad
β
β
β
β
Bikram kharal
β
β
β
β
c0ff33b34n
β
β
β
β
Veshraj Ghimire
β
β
β
β
TX
β
β
β
β
Krishna Agarwal
β
β
β
β
This project follows the
all-contributors
specification. Contributions of any kind welcome!
Next - Account Takeover Methodology
Account Takeover Methodology
Last modified
1mo ago
Copy link
Contents
GitBook Link :- https://kathan19.gitbook.io/
GitHub Repo Link :- https://github.com/KathanP19/HowToHunt
Contributors β¨