Alternatives and similar repositories for bug-bounty-responses

Users that are interested in bug-bounty-responses are comparing it to the libraries listed below

• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆75Updated 5 years ago
• JR0ch17 / S3Cruze
  All-in-one AWS S3 bucket tool for pentesters.
  ☆73Updated 6 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆134Updated last year
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆61Updated 2 years ago
• EdOverflow / h1-cli
  A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.
  ☆39Updated 6 years ago
• random-robbie / metadata-one-liners
  retrive metadata endpoint data with these one liners.
  ☆38Updated 4 years ago
• random-robbie / AWS-Scanner
  Scans a list of websites for Cloudfront or S3 Buckets
  ☆104Updated 3 years ago
• lc / brute53
  A tool to bruteforce nameservers when working with subdomain delegations to AWS.
  ☆58Updated 5 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆109Updated 9 years ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 4 years ago
• j0bin / Pentest-Resources
  ☆121Updated 8 years ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 4 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 6 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆48Updated 5 years ago
• FishermansEnemy / bucket_finder
  Amazon bucket brute force tool
  ☆101Updated 11 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆39Updated 7 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 7 months ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 6 years ago
• dewhurstsecurity / api_paths
  A list of REST API URL paths for use in blackbox API end-point discovery
  ☆25Updated 6 years ago
• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆163Updated 5 years ago
• cure53 / public-pentesting-reports
  Curated list of public penetration testing reports released by several consulting firms
  ☆48Updated 7 years ago
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆157Updated 2 months ago
• GoonSecurity / Rupert
  ☆20Updated 2 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• arbazkiraak / certasset
  Takes ip range, Scan all open SSL Certs, Grab Cnames
  ☆112Updated 6 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 4 years ago
• tomdev / teh_s3_bucketeers
  ☆275Updated 3 years ago