A-to-Z Bug Bounty Hunting Tools
☆118Mar 26, 2025Updated last year
Alternatives and similar repositories for BugBountyTools
Users that are interested in BugBountyTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Active Directory share enumeration tool☆12Apr 28, 2025Updated last year
- Templtor is a bash script that will gather all the community Nuclei templates.☆39Dec 19, 2025Updated 6 months ago
- INE eJPT Red Team Certification Exam Notes + Cheat Sheet☆33Feb 7, 2024Updated 2 years ago
- WebAnalyzer is a versatile tool for comprehensive domain analysis. It provides insights into WHOIS data, DNS records, subdomains, SEO, we…☆22Updated this week
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆31Apr 12, 2026Updated 2 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- VulScanner - is a powerful, multi-faceted tool designed for security professionals, developers, and penetration testers to perform automa…☆45Jul 29, 2025Updated 11 months ago
- JaelesFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications☆22May 1, 2024Updated 2 years ago
- Find subdomains by searching public certificate records☆16Jun 11, 2024Updated 2 years ago
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆24Aug 14, 2025Updated 10 months ago
- Javascript UI library that helps you create your own custom workflow designers☆20Feb 13, 2019Updated 7 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆31Jan 6, 2026Updated 6 months ago
- A command-line utility for auditing DNS configuration using Zonemaster API☆32Aug 21, 2023Updated 2 years ago
- ☆15Jan 27, 2022Updated 4 years ago
- Cheatsheet, Notes, Payloads and Mayhem for Burp Suite Practitioner Exam (BSCP)☆59Jan 31, 2026Updated 5 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Interactive XSS Labs to get into Client-Side Hacking☆93Feb 25, 2026Updated 4 months ago
- Bug Bounty Testing Essential Guideline : Startup Bug Hunters☆58Dec 21, 2020Updated 5 years ago
- Working reverse-engineered Claude Code CLI rebuilt from source analysis to reproduce the original terminal workflow☆113Apr 18, 2026Updated 2 months ago
- Python script implementing the favicon hash trick to find subdomains.☆40Mar 28, 2023Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆109Mar 1, 2022Updated 4 years ago
- Nuclei POC 模板☆10Feb 17, 2023Updated 3 years ago
- Custom mini tools during Red Teaming engagements☆24Jun 3, 2026Updated last month
- Web2 bug bounty Agent Skill — evidence-based, no AI slop. Covers 18 vulnerability classes across HackerOne, Bugcrowd, Intigriti, and YesW…☆60Feb 21, 2026Updated 4 months ago
- ☆36Mar 28, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A Burp Suite extension that converts IP addresses to decimal notation, useful for SSRF bypass and WAF evasion testing. Created by Harshad…☆13Dec 9, 2024Updated last year
- Coding labs from the Automate Cybersecurity Tasks with Python course from Google's Cybersecurity Professional Certificate.☆11Jan 26, 2024Updated 2 years ago
- A collection of awesome software, libraries, Learning Tutorials, documents, books, resources and interesting stuff about APIs☆19Jul 4, 2022Updated 4 years ago
- This is a Python script that generates a staged payload that fully bypasses MS Defender. Can potentially be used for EDRs with some custo…☆85Mar 31, 2026Updated 3 months ago
- ☆44May 4, 2025Updated last year
- 轻量级的 Active Directory 枚举工具,用于收集域环境中的信息☆89Mar 22, 2025Updated last year
- Bugboard is a comprehensive open-source cybersecurity tool for vulnerability detection and bug hunting.☆45Jun 23, 2026Updated 2 weeks ago
- API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).☆241Jan 25, 2026Updated 5 months ago
- A collection of PDF/books about the modern web application security and bug bounty.☆36Apr 13, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆31Dec 11, 2025Updated 6 months ago
- OpenRedirector is a powerful automation tool for detecting Open Redirect vulnerabilities in web applications☆19Oct 30, 2025Updated 8 months ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,852Apr 17, 2026Updated 2 months ago
- ODBC CLI with autocompletion, syntax highlighting, object preview☆14Mar 24, 2023Updated 3 years ago
- ☆11Aug 18, 2023Updated 2 years ago
- ☆14Feb 12, 2026Updated 4 months ago
- Who needs authentication? This cache purge vulnerability finder doesn't!☆10Apr 20, 2023Updated 3 years ago