Trending repositories for topic bug-bounty
A collection of various awesome lists for hackers, pentesters and security researchers
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
A list of resources for those interested in getting started in bug bounties
Open source templates you can use to bootstrap your security programs
Obtain GraphQL API schema even if the introspection is disabled
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).
The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries 📦📀 for Soar: The true, simple & suckless Linux User Repository/Package Manager:: https://github.com/pkgforge/soar [repo=pkgforg...
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text
This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries 📦📀 for Soar: The true, simple & suckless Linux User Repository/Package Manager:: https://github.com/pkgforge/soar [repo=pkgforg...
Open source templates you can use to bootstrap your security programs
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
A modern tool written in Python that automates your xss findings.
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
Obtain GraphQL API schema even if the introspection is disabled
A collection of various awesome lists for hackers, pentesters and security researchers
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text
A list of resources for those interested in getting started in bug bounties
A collection of various awesome lists for hackers, pentesters and security researchers
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
A list of resources for those interested in getting started in bug bounties
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
A collection of awesome one-liner scripts especially for bug bounty tips.
Open source templates you can use to bootstrap your security programs
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.
Obtain GraphQL API schema even if the introspection is disabled
This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).
Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for differe...
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).
[Custom || Automated] Curation & Collection of BugBounty Wordlists
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries 📦📀 for Soar: The true, simple & suckless Linux User Repository/Package Manager:: https://github.com/pkgforge/soar [repo=pkgforg...
Open source templates you can use to bootstrap your security programs
Learn how to set up a fake authentication web page on a fake WiFi network.
A hacking tool for bug bounties. Sharing and modifying is encouraged!
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.
Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for differe...
RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.
Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty
Obtain GraphQL API schema even if the introspection is disabled
Bug Bounty Tools used on Twitch - Recon
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
A collection of various awesome lists for hackers, pentesters and security researchers
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
A list of resources for those interested in getting started in bug bounties
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
crawls the website and finds broken social media links that can be hijacked
Obtain GraphQL API schema even if the introspection is disabled
A collection of awesome one-liner scripts especially for bug bounty tips.
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
"Essential Kali Linux commands for ethical hackers and penetration testers."
[Custom || Automated] Curation & Collection of BugBounty Wordlists
The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries 📦📀 for Soar: The true, simple & suckless Linux User Repository/Package Manager:: https://github.com/pkgforge/soar [repo=pkgforg...
This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).
Status Checker is a Python tool for swiftly checking the status of URLs. It categorizes responses by HTTP status codes, offering clear insights into website health. With async requests, color-coded ou...
Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security skil...
My useful files for penetration tests, security assessments, bug bounty and other security related stuff
Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins
crawls the website and finds broken social media links that can be hijacked
OWASP BLT is tool with the purpose of making the web a safer place. We have many facets to the project.
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
Learn how to set up a fake authentication web page on a fake WiFi network.
Open source templates you can use to bootstrap your security programs
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
Status Checker is a Python tool for swiftly checking the status of URLs. It categorizes responses by HTTP status codes, offering clear insights into website health. With async requests, color-coded ou...
A collection of various awesome lists for hackers, pentesters and security researchers
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
A list of resources for those interested in getting started in bug bounties
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
The all-in-one browser extension for offensive security professionals 🛠
Open source templates you can use to bootstrap your security programs
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
A collection of awesome one-liner scripts especially for bug bounty tips.
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.
Stalker, the Extensible Attack Surface Management tool.
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries 📦📀 for Soar: The true, simple & suckless Linux User Repository/Package Manager:: https://github.com/pkgforge/soar [repo=pkgforg...
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
"Essential Kali Linux commands for ethical hackers and penetration testers."
Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security skil...
Hastly written Tools & Scripts for Personal Use Cases & Bug Bounties
Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️
Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leaks.
[Custom || Automated] Curation & Collection of BugBounty Wordlists
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).
Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.
🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.
A modern tool written in Python that automates your xss findings.