# Book of BugBounty Tips ## Book of BugBounty Tips - [Introduction](https://gowsundar.gitbook.io/book-of-bugbounty-tips/master.md): Welcome to Book of Bug Bounty Tips - [OSINT / Recon](https://gowsundar.gitbook.io/book-of-bugbounty-tips/elastic-search.md) - [API](https://gowsundar.gitbook.io/book-of-bugbounty-tips/api.md) - [Cross Site Request Forgery (CSRF)](https://gowsundar.gitbook.io/book-of-bugbounty-tips/untitled.md) - [Server Side Request Forgery (SSRF)](https://gowsundar.gitbook.io/book-of-bugbounty-tips/ssrf.md) - [Sensitive Information Disclosure](https://gowsundar.gitbook.io/book-of-bugbounty-tips/sensitive-information-disclosure.md) - [Cross Site Scripting (XSS)](https://gowsundar.gitbook.io/book-of-bugbounty-tips/cross-site-scripting-xss.md) - [CRLF](https://gowsundar.gitbook.io/book-of-bugbounty-tips/crlf.md) - [Remote Code Execution (RCE)](https://gowsundar.gitbook.io/book-of-bugbounty-tips/remote-code-execution-rce.md) - [Email Bypass](https://gowsundar.gitbook.io/book-of-bugbounty-tips/email-related.md) - [File Upload](https://gowsundar.gitbook.io/book-of-bugbounty-tips/file-upload.md) - [Open Redirect](https://gowsundar.gitbook.io/book-of-bugbounty-tips/open-redirect.md) - [Insecure Direct Object Reference (IDOR)](https://gowsundar.gitbook.io/book-of-bugbounty-tips/idor.md) - [Injection](https://gowsundar.gitbook.io/book-of-bugbounty-tips/injection.md) - [XXE](https://gowsundar.gitbook.io/book-of-bugbounty-tips/xxe.md) - [Local / Remote File Inclusion](https://gowsundar.gitbook.io/book-of-bugbounty-tips/lfi-rfi.md) - [Authentication / Authorization](https://gowsundar.gitbook.io/book-of-bugbounty-tips/authentication-authorization.md) - [Account Takeover](https://gowsundar.gitbook.io/book-of-bugbounty-tips/account-takeover.md) - [Application Login](https://gowsundar.gitbook.io/book-of-bugbounty-tips/application-login.md) - [Clickjacking](https://gowsundar.gitbook.io/book-of-bugbounty-tips/clickjacking.md) - [Parameter Pollution](https://gowsundar.gitbook.io/book-of-bugbounty-tips/parameter-pollution.md) - [Fuzzing](https://gowsundar.gitbook.io/book-of-bugbounty-tips/fuzzing.md) - [Application Logic Bypasses](https://gowsundar.gitbook.io/book-of-bugbounty-tips/application-logic-bypasses.md) - [Bypasses](https://gowsundar.gitbook.io/book-of-bugbounty-tips/bypasses.md) - [Mobile](https://gowsundar.gitbook.io/book-of-bugbounty-tips/mobile.md) - [Password Reset](https://gowsundar.gitbook.io/book-of-bugbounty-tips/password-reset.md) - [Web Cache](https://gowsundar.gitbook.io/book-of-bugbounty-tips/web-cache.md) - [Server Side Template Injection](https://gowsundar.gitbook.io/book-of-bugbounty-tips/server-side-template-injection.md) - [Tips from @EdOverflow](https://gowsundar.gitbook.io/book-of-bugbounty-tips/untitled-3.md) - [Tips From @intigriti](https://gowsundar.gitbook.io/book-of-bugbounty-tips/intigrity-tips.md) - [Hackpack From @yeswehack](https://gowsundar.gitbook.io/book-of-bugbounty-tips/hackpack-from-yeswehack.md) - [Tips from @YogoshaOfficial](https://gowsundar.gitbook.io/book-of-bugbounty-tips/tips-fro-yogoshaofficial.md) - [Tips from @Jhaddix](https://gowsundar.gitbook.io/book-of-bugbounty-tips/tips-from-jasonhaddix.md) - [Tips from Ben (@nahamsec)](https://gowsundar.gitbook.io/book-of-bugbounty-tips/tips-from-ben.md) - [Tips from Other Sources](https://gowsundar.gitbook.io/book-of-bugbounty-tips/tips-from-alra3ees.md) - [Tips from Blog posts / other hunters](https://gowsundar.gitbook.io/book-of-bugbounty-tips/tips-from-user-blogs.md) - [Others](https://gowsundar.gitbook.io/book-of-bugbounty-tips/misc.md) - [Bugbounty Related Websites / Blogs](https://gowsundar.gitbook.io/book-of-bugbounty-tips/bugbounty-related-websites.md) - [Docker and k8s](https://gowsundar.gitbook.io/book-of-bugbounty-tips/docker-and-k8s.md): This section will contain the list of twitter feeds related to Docker and k8s security - [Tweets Collection by @Pentesterland](https://gowsundar.gitbook.io/book-of-bugbounty-tips/tweets-collection-by-pentesterland.md) - [Windows](https://gowsundar.gitbook.io/book-of-bugbounty-tips/windows.md) - [Linux](https://gowsundar.gitbook.io/book-of-bugbounty-tips/linux.md) - [Burp suite](https://gowsundar.gitbook.io/book-of-bugbounty-tips/burp-suite.md) - [Scope Based Recon Tips](https://gowsundar.gitbook.io/book-of-bugbounty-tips/scope-based-recon-tips.md) --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on a page URL with the `ask` query parameter: ``` GET https://gowsundar.gitbook.io/book-of-bugbounty-tips/master.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.