An obsessive, expert-tier knowledge base + AI skill system for professional bug bounty hunting, security research, and penetration testing.
☆23Apr 25, 2026Updated 2 months ago
Alternatives and similar repositories for BugBountySkills
Users that are interested in BugBountySkills are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A curated collection of my security research and bug bounty writeups, documenting real-world vulnerabilities, exploitation methods☆20Jun 29, 2026Updated 2 weeks ago
- BadGPT is a robust framework designed to simplify and optimize the bug bounty process. Equipped with a suite of tools for reconnaissance,…☆25Dec 1, 2024Updated last year
- URILoot is a browser extension designed for Bug Bounty Hunters and Pentesters. Makes fetching uris easy from various sources.☆63Feb 15, 2026Updated 4 months ago
- TokenTwin Checker — Dual Token BAC/IDOR Tester for Burp Suite☆84Jun 28, 2026Updated 2 weeks ago
- A simple HAR-based JavaScript recon automation kit for organizing JS files, endpoints, secrets, and gf-filtered attack surface during bug…☆16May 20, 2026Updated last month
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆35Feb 10, 2024Updated 2 years ago
- HTB recon tool to simplify part of the enumeration process☆14May 14, 2025Updated last year
- My Main App Hacking CheckList☆31Jun 20, 2026Updated 3 weeks ago
- The "Let's-defend-solution" directory contains the answers to all paths of the Let's Defend platform that were saved by the creator 8 mon…☆12Apr 27, 2023Updated 3 years ago
- ☆27Nov 20, 2025Updated 7 months ago
- Google Dork Finder is a Python tool designed to facilitate the use of Google Dorking for searching specific information on the web.☆33Nov 27, 2024Updated last year
- ☆19Apr 27, 2025Updated last year
- Mini recon script to identify the links and sensitive information from a particular link☆23Mar 9, 2021Updated 5 years ago
- AI-Powered Agents for Bub-Bounty Pentesting and Red-Teaming purposes☆342Apr 30, 2026Updated 2 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This is Web Application Penetration Testing Report made for everybody who wanted a glance of how to make a professional report for pentet…☆18Sep 3, 2021Updated 4 years ago
- ☆15Mar 21, 2025Updated last year
- A collection of custom built scan templates for automated vuln scanning (nuclei, Burp, etc.)☆50Mar 23, 2023Updated 3 years ago
- Demonstrating 3 persistence layers from a single EXE, that converts itself into proxy DLLs at runtime☆94Mar 29, 2026Updated 3 months ago
- ☆11Apr 8, 2024Updated 2 years ago
- Self-hosted external attack surface scanner. Subdomain enumeration + takeover detection, ports, CVEs, TLS, SSH, web vulns, EPSS/KEV prior…☆17Updated this week
- BoDmagh dataset is a Supervised Fine-Tuning (SFT) dataset for the Darija language☆21May 4, 2025Updated last year
- Telegram cybersecurity channels.☆26Jun 17, 2026Updated 3 weeks ago
- ☆26Sep 5, 2025Updated 10 months ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Stealth hybrid URL mapper☆17May 1, 2026Updated 2 months ago
- ☆20Mar 6, 2026Updated 4 months ago
- A Python tool to resolve domains to IPs, fetch related CVEs, and display open ports☆17Nov 21, 2025Updated 7 months ago
- ☆96May 11, 2026Updated 2 months ago
- How To approach recon on real targets — from passive enumeration to origin IP discovery. Covers tools, automation, and the logic behind e…☆324Jul 5, 2026Updated last week
- PenTest and BugBounty 🕵️☆15Updated this week
- Master Thick Client Penetration Testing: Explore practical methodologies, uncover vulnerabilities, and enhance security.☆21Apr 6, 2024Updated 2 years ago
- CVE-2025-55182-bypass-waf☆30Jan 8, 2026Updated 6 months ago
- SelimDroid - Automated Android Dynamic Security Scanner☆21May 20, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Cryptanalysis of a proprietary 1999 video DRM system. Recovers 61 encrypted wrestling videos from the WCW Internet Powerdisk CD-ROM throu…☆25Jan 29, 2026Updated 5 months ago
- Proof-of-Concept exploit for CVE-2026-23918 (Apache mod_http2 double-free). Features multi-mode DoS (Rapid-RST, Slow-Drip) and passive RC…☆22May 6, 2026Updated 2 months ago
- ☆13Jan 12, 2023Updated 3 years ago
- ☆31Nov 3, 2024Updated last year
- Torrent Like Protocol for Deployment LLM Models☆22Sep 16, 2025Updated 9 months ago
- DPG Campus Tool. Shrink massive PDFs to fit AI upload limits. Sanitize before uploading to reduce risk of exposing sensitive data.☆50Jan 20, 2026Updated 5 months ago
- Like DLP☆11Jan 27, 2025Updated last year