EdOverflow / proof-of-concepts

Related projects ⓘ

Alternatives and complementary repositories for proof-of-concepts

• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆75Updated 5 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆131Updated last year
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 5 years ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 4 years ago
• jhaddix / scripts
  Usefull stuff from around teh internetz
  ☆109Updated 7 years ago
• EdOverflow / bugbountywiki
  The Bug Bounty Wiki
  ☆169Updated 6 years ago
• random-robbie / bugbountydork
  Bug Bounty Dork
  ☆68Updated 2 years ago
• upgoingstar / hackerone_public_reports
  Finds all public bug reports on reported on Hackerone
  ☆90Updated 8 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆85Updated 8 years ago
• clirimemini / Keye
  Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…
  ☆100Updated 4 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆302Updated 6 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆154Updated 4 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆78Updated 5 years ago
• yasinS / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆36Updated 7 years ago
• 0xdevalias / wordlists
  A place to store my own wordlists, and link to others that are useful
  ☆105Updated last year
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆97Updated last month
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆149Updated 6 years ago
• BugBountyResources / Resources
  A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms ti…
  ☆90Updated 3 years ago
• Hacker0x01 / h1-212-ctf-solutions
  A collection of the solutions people wrote for the H1-212 Capture The Flag event
  ☆95Updated 5 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆107Updated 8 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆142Updated 3 years ago
• avlidienbrunn / bountydash
  BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
  ☆140Updated last year
• random-robbie / AWS-Scanner
  Scans a list of websites for Cloudfront or S3 Buckets
  ☆104Updated 2 years ago
• JR0ch17 / S3Cruze
  All-in-one AWS S3 bucket tool for pentesters.
  ☆70Updated 5 years ago
• zseano / InputScanner
  ☆235Updated 6 years ago
• nahamsec / SundayStreams
  Data from my Sunday streams
  ☆72Updated 5 years ago