Table of contents

HowToHunt.md

API Testing

Account Takeover Methodology

Account Takeover Methodology

Application Level DoS

Application Level DoS Methods

Authentication Bypass

Broken-Link Hijacking

Broken-Link Hijacking

Broken Auth And Session Management

Session Based Bugs

CMS

CORS

CSRF

Finding CVEs

CVES

CheckList

Web Page Source Code Review

Web Page Code Review Tips

EXIF Geo Data Not Stripped

EXIF Geo Data Not Stripped

File Upload Bypass

File Upload Bypass

Find Origin IP

Find Origin

GraphQL

GraphQL

HTTP Desync Attack

HTTP_Desync

Host-Header Attack

Host-Header

HTML-Injection

HTML-Injection

IDOR

IDOR

JWT ATTACK

JWT

JIRA ATTACK

JIRA

MFA Bypass

Misconfigurations

OAuth

Open Redirection

Parameter Pollution

Parameter Pollution In Social Sharing Buttons

Password Reset Functionality

Rate Limit

Race Condition

Race Condition

Recon

SQLi

SQL Injection.md

SAML

SAML

SSRF

SSTI

SSTI

Sign Up Functionality

Sensitive Info Leaks

Status Code Bypass

Subdomain Takeover

Tabnabbing

Tabnabbing

WAF Bypasses

WAF Bypass Using Headers

Weak Password Policy

Weak Password Policy

XSS

XXE