Alternatives and similar repositories for bug-bounty-responses

Users that are interested in bug-bounty-responses are comparing it to the libraries listed below

• EdOverflow / h1-cli
  A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.
  ☆40Updated 7 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆106Updated last year
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆61Updated 6 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 5 years ago
• random-robbie / metadata-one-liners
  retrive metadata endpoint data with these one liners.
  ☆41Updated 5 years ago
• JR0ch17 / S3Cruze
  All-in-one AWS S3 bucket tool for pentesters.
  ☆74Updated 6 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 5 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 6 years ago
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆76Updated 5 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆40Updated 7 years ago
• FishermansEnemy / bucket_finder
  Amazon bucket brute force tool
  ☆102Updated 12 years ago
• EdOverflow / smith
  Simple wrapper for meg that sieves through meg's output for you.
  ☆60Updated 6 years ago
• random-robbie / AWS-Scanner
  Scans a list of websites for Cloudfront or S3 Buckets
  ☆105Updated 3 years ago
• 0xdevalias / wordlists
  A place to store my own wordlists, and link to others that are useful
  ☆107Updated last year
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 5 years ago
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆61Updated 2 years ago
• rojan-rijal / Pyrate
  Practice Web App written in python with some vulnerabilities.
  ☆34Updated 4 years ago
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆39Updated 6 years ago
• 0xbharath / slurp-old
  A tool to enumerate S3 buckets manually or via certstream
  ☆82Updated 2 years ago
• lc / hacks
  Repo of useful scripts
  ☆105Updated 5 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆135Updated 6 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆109Updated 9 years ago
• random-robbie / mass-s3-bucket-tester
  This tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable
  ☆55Updated 4 months ago
• smiegles / mass3
  ☆128Updated 6 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆77Updated 5 years ago
• rahulunair / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆27Updated 6 years ago
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆86Updated 5 years ago
• samhaxr / TakeOver-v1
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆101Updated 2 years ago
• bugbounty-site / GitSecure
  Detect exposed API keys on GitHub commits.
  ☆34Updated 3 years ago
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆48Updated 5 years ago