Alternatives and similar repositories for proof-of-concepts:

Users that are interested in proof-of-concepts are comparing it to the libraries listed below

• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆132Updated last year
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• EdOverflow / bugbountywiki
  The Bug Bounty Wiki
  ☆172Updated 6 years ago
• JR0ch17 / S3Cruze
  All-in-one AWS S3 bucket tool for pentesters.
  ☆72Updated 6 years ago
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆75Updated 5 years ago
• random-robbie / bugbountydork
  Bug Bounty Dork
  ☆71Updated 3 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆149Updated 6 years ago
• jhaddix / scripts
  Usefull stuff from around teh internetz
  ☆110Updated 7 years ago
• avlidienbrunn / bountydash
  BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
  ☆147Updated 2 years ago
• zseano / InputScanner
  ☆242Updated 6 years ago
• clirimemini / Keye
  Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…
  ☆100Updated 5 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago
• yasinS / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆37Updated 7 years ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 4 years ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 6 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆155Updated 5 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆108Updated 8 years ago
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆306Updated 6 years ago
• random-robbie / AWS-Scanner
  Scans a list of websites for Cloudfront or S3 Buckets
  ☆104Updated 3 years ago
• tomdev / teh_s3_bucketeers
  ☆274Updated 3 years ago
• Hacker0x01 / h1-212-ctf-solutions
  A collection of the solutions people wrote for the H1-212 Capture The Flag event
  ☆95Updated 6 years ago
• EdOverflow / smith
  Simple wrapper for meg that sieves through meg's output for you.
  ☆60Updated 5 years ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆102Updated 4 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆213Updated 6 months ago
• rahulunair / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆27Updated 6 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 6 months ago
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆60Updated 2 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆86Updated 8 years ago