Karanxa / Bug-Bounty-Wordlists

Related projects ⓘ

Alternatives and complementary repositories for Bug-Bounty-Wordlists

• 0xJin / awesome-bugbounty-builder
  Awesome Bug bounty builder Project
  ☆643Updated last year
• orwagodfather / WordList
  ☆659Updated last month
• sh377c0d3 / Payloads
  Payload Arsenal for Pentration Tester and Bug Bounty Hunters
  ☆892Updated last year
• sushiwushi / bug-bounty-dorks
  List of Google Dorks for sites that have responsible disclosure program / bug bounty program
  ☆1,215Updated last year
• xnl-h4ck3r / GAP-Burp-Extension
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,253Updated 4 months ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,218Updated 2 months ago
• The-XSS-Rat / SecurityTesting
  ☆1,019Updated last week
• e11i0t4lders0n / Web-Application-Pentest-Checklist
  ☆523Updated 3 years ago
• xnl-h4ck3r / xnLinkFinder
  A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target
  ☆1,204Updated 4 months ago
• chvancooten / BugBountyScanner
  A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
  ☆875Updated 11 months ago
• Dheerajmadhukar / 4-ZERO-3
  403/401 Bypass Methods + Bash Automation + Your Support ;)
  ☆1,328Updated 2 years ago
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆935Updated 4 months ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆900Updated last year
• Proviesec / google-dorks
  Useful Google Dorks for WebSecurity and Bug Bounty
  ☆985Updated 7 months ago
• m4ll0k / BBTz
  BBT - Bug Bounty Tools (examples💡)
  ☆1,720Updated 7 months ago
• PentestPad / subzy
  Subdomain takeover vulnerability checker
  ☆1,063Updated 2 months ago
• 0xPugal / fuzz4bounty
  1337 Wordlists for Bug Bounty Hunting
  ☆790Updated 2 weeks ago
• xnl-h4ck3r / waymore
  Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!
  ☆1,739Updated 4 months ago
• s0md3v / uro
  declutters url lists for crawling/pentesting
  ☆1,203Updated 2 weeks ago
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆944Updated 2 years ago
• tuhin1729 / Bug-Bounty-Methodology
  These are my checklists which I use during my hunting.
  ☆576Updated 11 months ago
• sehno / Bug-bounty
  Ressources for bug bounty hunting
  ☆1,744Updated last year
• trickest / wordlists
  Real-world infosec wordlists, updated regularly
  ☆1,400Updated this week
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆712Updated 4 months ago
• emadshanab / Nuclei-Templates-Collection
  Nuclei Templates Collection
  ☆908Updated 6 months ago
• sw33tLie / bbscope
  Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
  ☆1,026Updated last month
• YaS5in3 / Bug-Bounty-Wordlists
  ☆605Updated 3 months ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,819Updated 10 months ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆760Updated last year
• lutfumertceylan / top25-parameter
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,709Updated 5 months ago