A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
☆96Jun 5, 2021Updated 4 years ago
Alternatives and similar repositories for Resources
Users that are interested in Resources are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Welcome! This repo is a conglomeration of tips, tricks, tools, and data analysis to use while doing web application security assessments,…☆14Jan 13, 2019Updated 7 years ago
- Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testi…☆13Oct 23, 2021Updated 4 years ago
- ☆27Jan 25, 2020Updated 6 years ago
- A better dns bruteforcer written in golang☆13Nov 4, 2018Updated 7 years ago
- Bug Bounty Tools☆34Jul 2, 2020Updated 5 years ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- Misc. Public Reports of Penetration Testing and Security Audits.☆35Jan 8, 2021Updated 5 years ago
- Security pentesting/devsecops/bug bounty/Cloud etc.☆20Feb 7, 2024Updated 2 years ago
- Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.☆63Feb 26, 2019Updated 7 years ago
- Reconnaisance Tool☆12Jun 4, 2020Updated 5 years ago
- ☆23Mar 3, 2020Updated 6 years ago
- My personal bug bounty toolkit.☆164Jun 18, 2024Updated last year
- Toolset for detecting reflected xss in websites☆116Oct 7, 2018Updated 7 years ago
- ☆26Feb 28, 2023Updated 3 years ago
- XSS reflector vulnerabilities exploitation extended.☆27Jul 25, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆122Mar 27, 2017Updated 8 years ago
- Burp Suite Extensions☆12Oct 19, 2021Updated 4 years ago
- Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...☆148Jul 30, 2020Updated 5 years ago
- XSS Finder Via SSTI☆56Sep 14, 2023Updated 2 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆41Jul 19, 2018Updated 7 years ago
- The tools I have programmed to help me with bugbounty's☆117Oct 10, 2019Updated 6 years ago
- differer finds how URLs are parsed by different languages in order to help bug hunters break filters☆63May 3, 2020Updated 5 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆28Mar 22, 2022Updated 4 years ago
- S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners☆27Nov 13, 2021Updated 4 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Directory Fuzzer for Pentesting and Host Recon☆29Nov 10, 2018Updated 7 years ago
- ☆15Dec 1, 2021Updated 4 years ago
- A Go implementation of dirsearch.☆43Mar 10, 2019Updated 7 years ago
- This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping☆48Nov 12, 2019Updated 6 years ago
- Resources I consider useful for security research of web applications☆61Dec 15, 2020Updated 5 years ago
- Stuff for bug bounty☆35Feb 1, 2023Updated 3 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆749Apr 12, 2022Updated 3 years ago
- ☆11Dec 1, 2021Updated 4 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆82Feb 4, 2023Updated 3 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- My nots from Web application Hacker's Handbook☆18Nov 22, 2021Updated 4 years ago
- Automated blind-xss search for Burp Suite☆285Oct 10, 2019Updated 6 years ago
- Simple multi threaded tool to extract domain related data from commoncrawl.org☆31Jul 17, 2018Updated 7 years ago
- Script for monitoring changes in javascript files on WebApps for offensive reconnaissance.☆28Aug 4, 2021Updated 4 years ago
- Project Morya is just a collection of bash scripts that runs iteratively to carry out various tools and recon process & store output in a…☆72Mar 5, 2022Updated 4 years ago
- A list of Mind-Map for those interested in getting started in bug bounties.☆17Jul 9, 2021Updated 4 years ago
- A collection of useful Serverless functions I use when pentesting☆391Dec 9, 2022Updated 3 years ago