Skip to content

adminsairolotech-bit/HowToHunt

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

812 Commits
.github
.github
 
 
API_Testing
API_Testing
 
 
Account_Takeovers_Methodologies
Account_Takeovers_Methodologies
 
 
Application_Level_DoS
Application_Level_DoS
 
 
Authentication_Bypass
Authentication_Bypass
 
 
BrokenLinkHijacking
BrokenLinkHijacking
 
 
Broken_Auth_And_Session_Management
Broken_Auth_And_Session_Management
 
 
CMS
CMS
 
 
CORS
CORS
 
 
CSRF
CSRF
 
 
CVES
CVES
 
 
CheckList
CheckList
 
 
EXIF_Geo_Data_Not_Stripped
EXIF_Geo_Data_Not_Stripped
 
 
File_Upload
File_Upload
 
 
FindOriginIP
FindOriginIP
 
 
GraphQL
GraphQL
 
 
HTML_Injection
HTML_Injection
 
 
HTTP_Desync
HTTP_Desync
 
 
Host-Header
Host-Header
 
 
IDOR
IDOR
 
 
JIRA
JIRA
 
 
JWT
JWT
 
 
MFA_Bypasses
MFA_Bypasses
 
 
Misconfigurations
Misconfigurations
 
 
OAuth
OAuth
 
 
Open_Redirection
Open_Redirection
 
 
Parameter_Pollution
Parameter_Pollution
 
 
Password_Reset_Functionality
Password_Reset_Functionality
 
 
Race_Condition
Race_Condition
 
 
Rate_limit
Rate_limit
 
 
Recon
Recon
 
 
SAML
SAML
 
 
SQLi
SQLi
 
 
SSRF
SSRF
 
 
SSTI
SSTI
 
 
Sensitive_Info_Leaks
Sensitive_Info_Leaks
 
 
Sign_Up_Functionality
Sign_Up_Functionality
 
 
Status_Code_Bypass
Status_Code_Bypass
 
 
Subdomain_Takeover
Subdomain_Takeover
 
 
Tabnabbing
Tabnabbing
 
 
WAF_Bypasses
WAF_Bypasses
 
 
Weak_Password_Policy
Weak_Password_Policy
 
 
Web_Source_Review
Web_Source_Review
 
 
XSS
XSS
 
 
XXE
XXE
 
 
.all-contributorsrc
.all-contributorsrc
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SUMMARY.md
SUMMARY.md
 
 

Repository files navigation

HowToHunt

GitHub stars License Top language

A practical, documentation-first playbook for web vulnerability hunting.
Methodologies, checklists, and reproducible test cases for pentesters, bug bounty hunters, and AppSec teams.

Overview

HowToHunt is a structured collection of web security testing guidance focused on execution, not just theory.

This repository helps you answer, consistently:

  • What to test
  • How to test
  • What to validate
  • How to reproduce findings clearly

Use it as a field manual for:

  • Web application penetration testing
  • Bug bounty assessments
  • Security lab training
  • Internal application security reviews

Key Features

  • Step-by-step methodologies for common web vulnerability classes
  • Practical test cases with reproducible validation flow
  • Checklist-driven coverage to reduce missed attack paths
  • Tool-agnostic Markdown documentation
  • Friendly for beginners, useful for experienced testers
  • Easy to adapt for personal workflows or team playbooks

Getting Started

This is a documentation repository — no build process or runtime setup is required.

1) Read on GitHub (fastest)

Open and browse the Markdown files directly in this repository.

2) Clone locally

git clone https://github.com/adminsairolotech-bit/HowToHunt.git
cd HowToHunt

Open files with any Markdown editor/viewer (VS Code, Obsidian, Typora, etc.).

3) Optional: GitBook view

For a book-style reading experience:

Suggested Usage Workflow

  1. Select a target scope (authorized only).
  2. Pick a vulnerability category from the docs.
  3. Follow methodology + checklist during testing.
  4. Execute test cases and capture evidence.
  5. Document reproducibility steps for each confirmed finding.
  6. Report with impact, proof, and remediation guidance.

Repository Structure

The repository is organized as Markdown-based guidance and test notes.
Use folder/file names as your navigation map by vulnerability category and test flow.

Contributing

Contributions are welcome and encouraged.

You can help by:

  • Improving methodology clarity
  • Adding new test cases
  • Expanding edge-case coverage
  • Fixing inaccuracies or outdated guidance
  • Improving formatting and readability

How to contribute

  1. Fork the repository
  2. Create a feature branch
    git checkout -b docs/improve-xss-methodology
  3. Commit your changes with clear messages
  4. Push to your fork
  5. Open a Pull Request with:
    • What you changed
    • Why it improves testing quality
    • Any references/examples

Please keep contributions:

  • Ethical and legal
  • Focused on defensive security testing and authorized assessments
  • Reproducible and clearly written

License

This project is licensed under the GNU General Public License v3.0.
See the LICENSE file for full details.

About

Collection of methodology and test case for various web vulnerabilities.

Resources

Readme

License

GPL-3.0 license

Code of conduct

Code of conduct

Contributing

Contributing
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors