Trending repositories for topic bug-bounty

A collection of various awesome lists for hackers, pentesters and security researchers

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Web path scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...

A list of resources for those interested in getting started in bug bounties

💀 Don't fear the Reaper 👻

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

The all-in-one browser extension for offensive security professionals 🛠

Open source templates you can use to bootstrap your security programs

A collection of awesome one-liner scripts especially for bug bounty tips.

A collection of one-liners for bug bounty hunting.

A Workflow Engine for Offensive Security

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

Obtain GraphQL API schema even if the introspection is disabled

Work in progress...

Official (pkgforge-edge) Repo 📦📀 & The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries (incl. Build Scripts) & Package Manager (rust) :: https://github.com/pkgforge/soar

Complete Roadmap for Penetration Testing

Bug Bounty Tools used on Twitch - Recon

Pentesting automation platform that combines hacking tools to complete assessments

Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for differe...

💀 Don't fear the Reaper 👻

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Open source templates you can use to bootstrap your security programs

Official (pkgforge-edge) Repo 📦📀 & The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries (incl. Build Scripts) & Package Manager (rust) :: https://github.com/pkgforge/soar

Complete Roadmap for Penetration Testing

Work in progress...

Bug Bounty Tools used on Twitch - Recon

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

A collection of one-liners for bug bounty hunting.

Pentesting automation platform that combines hacking tools to complete assessments

Obtain GraphQL API schema even if the introspection is disabled

Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for differe...

A collection of awesome one-liner scripts especially for bug bounty tips.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...

A collection of various awesome lists for hackers, pentesters and security researchers

平常看到好的渗透hacking工具和多领域效率工具的集合

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A list of resources for those interested in getting started in bug bounties

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

A collection of various awesome lists for hackers, pentesters and security researchers

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Web path scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

💀 Don't fear the Reaper 👻

A list of resources for those interested in getting started in bug bounties

A collection of awesome one-liner scripts especially for bug bounty tips.

The all-in-one browser extension for offensive security professionals 🛠

Open source templates you can use to bootstrap your security programs

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

A collection of one-liners for bug bounty hunting.

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

A Workflow Engine for Offensive Security

Obtain GraphQL API schema even if the introspection is disabled

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

crawls the website and finds broken social media links that can be hijacked

"Essential Kali Linux commands for ethical hackers and penetration testers."

Complete Roadmap for Penetration Testing

平常看到好的渗透hacking工具和多领域效率工具的集合

"Essential Kali Linux commands for ethical hackers and penetration testers."

💀 Don't fear the Reaper 👻

Complete Roadmap for Penetration Testing

Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security skil...

Open source templates you can use to bootstrap your security programs

Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins

A Security Tool for Bug Bounty, Pentest and Red Teaming.

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, mak...

Work in progress...

Official (pkgforge-edge) Repo 📦📀 & The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries (incl. Build Scripts) & Package Manager (rust) :: https://github.com/pkgforge/soar

Little Bug Bounty & Hacking Tools⚔️

crawls the website and finds broken social media links that can be hijacked

🎯 CSV Injection Payloads

Pentesting automation platform that combines hacking tools to complete assessments

A collection of one-liners for bug bounty hunting.

Obtain GraphQL API schema even if the introspection is disabled

A collection of awesome one-liner scripts especially for bug bounty tips.

Bug Bounty Tools used on Twitch - Recon

平常看到好的渗透hacking工具和多领域效率工具的集合

A collection of various awesome lists for hackers, pentesters and security researchers

Web path scanner

💀 Don't fear the Reaper 👻

A list of resources for those interested in getting started in bug bounties

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Open source templates you can use to bootstrap your security programs

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...

Semi-automatic OSINT framework and package manager

A collection of awesome one-liner scripts especially for bug bounty tips.

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

The all-in-one browser extension for offensive security professionals 🛠

A Workflow Engine for Offensive Security

Obtain GraphQL API schema even if the introspection is disabled

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

A collection of one-liners for bug bounty hunting.

The most exhaustive list of reliable DNS resolvers.

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

💀 Don't fear the Reaper 👻

"Essential Kali Linux commands for ethical hackers and penetration testers."

Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...

Open source templates you can use to bootstrap your security programs

Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins

Custom wordlist, updated regularly

Official (pkgforge-edge) Repo 📦📀 & The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries (incl. Build Scripts) & Package Manager (rust) :: https://github.com/pkgforge/soar

Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security skil...

Complete Roadmap for Penetration Testing

[Custom || Automated] Curation & Collection of BugBounty Wordlists

A micro-framework and tool for performing reconnaissance.

Pentest/Red Team: Resources, repos and scripts.

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

The First Open Source Bug Bounty Platform

Learn how to set up a fake authentication web page on a fake WiFi network.

Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

A BurpSuite extension for vulnerability Scanning

Open source templates you can use to bootstrap your security programs

Complete Roadmap for Penetration Testing

A Powerful Network Reconnaissance Tool for Security Professionals

Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...

Status Checker is a Python tool for swiftly checking the status of URLs. It categorizes responses by HTTP status codes, offering clear insights into website health. With async requests, color-coded ou...

A BurpSuite extension for vulnerability Scanning

A collection of various awesome lists for hackers, pentesters and security researchers

Web path scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...

A list of resources for those interested in getting started in bug bounties

A Security Tool for Bug Bounty, Pentest and Red Teaming.

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

The all-in-one browser extension for offensive security professionals 🛠

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

A Workflow Engine for Offensive Security

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Open source templates you can use to bootstrap your security programs

A collection of awesome one-liner scripts especially for bug bounty tips.

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

📦 An independent package manager that every hacker deserves.

Semi-automatic OSINT framework and package manager

Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!

Asset inventory of over 800 public bug bounty programs.

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

Official (pkgforge-edge) Repo 📦📀 & The Largest Collection of Pre-Compiled (+ UPXed) Linux Static Binaries (incl. Build Scripts) & Package Manager (rust) :: https://github.com/pkgforge/soar

Stalker, the Extensible Attack Surface Management tool.

Hastly written Tools & Scripts for Personal Use Cases & Bug Bounties

Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!

Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security skil...

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

"Essential Kali Linux commands for ethical hackers and penetration testers."

Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️

[Custom || Automated] Curation & Collection of BugBounty Wordlists

A Powerful Network Reconnaissance Tool for Security Professionals

Collection of (4000+) malicious rMQR Codes for Penetration testing, Vulnerability assessments, Red Team operations, Bug Bounty and more

Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leaks.

A list of cheat sheets for application security

A micro-framework and tool for performing reconnaissance.

This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).

Gaining the most elusive of tips. Add your input and let's collect them all!

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

A modern tool written in Python that automates your xss findings.

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.