EdOverflow
bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

Last updated Jul 9, 2026
6.5k
Stars
1.6k
Forks
11
Issues
+4
Stars/day
Attention Score
92
Language breakdown
No language data available.
โ–ธ Files click to expand
README

Bug Bounty Cheat Sheet

| ๐Ÿ“š Reference | ๐Ÿ”Ž Vulnerabilities | |-------------------------------------------------------------|-----------------------------------------------------------| | Bug Bounty Platforms | XSS | | Books | SQLi | | Special Tools | SSRF | | Recon | CRLF Injection | | Practice Platforms | CSV Injection | | Bug Bounty Tips | LFI | | | XXE | | | RCE | | | Open Redirect | | | Crypto | | | Template Injection | | | Content Injection | | | XSLT Injection |

Contributing

We welcome contributions from the public.

Using the issue tracker ๐Ÿ’ก

The issue tracker is the preferred channel for bug reports and features requests. GitHub issues

Issues and labels ๐Ÿท

Our bug tracker utilizes several labels to help organize and identify issues.

Guidelines for bug reports ๐Ÿ›

Use the GitHub issue search โ€” check if the issue has already been reported.

Style Guide

We like to keep our Markdown files as uniform as possible. So if you submit a PR, make sure to follow this style guide (we will not be angry if you do not).

  • Cheat sheet titles should start with ##.
  • Subheadings should be made bold. (Subheading)
  • Add newlines after subheadings and code blocks.
  • Code blocks should use three backticks. (```)
  • Make sure to use syntax highlighting whenever possible.

Contributors

๐Ÿ”— More in this category

ยฉ 2026 GitRepoTrend ยท EdOverflow/bugbounty-cheatsheet ยท Updated daily from GitHub