KathanP19/HowToHunt external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

KathanP19/HowToHunt

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/KathanP19/HowToHunt)

Close

KathanP19 / HowToHuntView on GitHubMore

• External links
• Readme badge

Collection of methodology and test case for various web vulnerabilities.

☆7,034Jun 25, 2025Updated 8 months ago

Alternatives and similar repositories for HowToHunt

Users that are interested in HowToHunt are comparing it to the libraries listed below

• daffainfo / AllAboutBugBounty

  View on GitHub
  All about bug bounty (bypasses, payloads, and etc)
  ☆6,655Sep 8, 2023Updated 2 years ago
• KingOfBugbounty / KingOfBugBountyTips

  View on GitHub
  Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…
  ☆5,208Jan 31, 2026Updated last month
• devanshbatham / Awesome-Bugbounty-Writeups

  View on GitHub
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆5,547Aug 6, 2023Updated 2 years ago
• dwisiswant0 / awesome-oneliner-bugbounty

  View on GitHub
  A collection of awesome one-liner scripts especially for bug bounty tips.
  ☆3,077Jul 29, 2024Updated last year
• EdOverflow / bugbounty-cheatsheet

  View on GitHub
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,382Sep 14, 2023Updated 2 years ago
• streaak / keyhacks

  View on GitHub
  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
  ☆6,075Aug 14, 2024Updated last year
• nahamsec / Resources-for-Beginner-Bug-Bounty-Hunters

  View on GitHub
  A list of resources for those interested in getting started in bug bounties
  ☆11,832Jul 23, 2024Updated last year
• six2dez / reconftw

  View on GitHub
  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…
  ☆7,259Updated this week
• harsh-bothra / learn365

  View on GitHub
  This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
  ☆1,689Jun 20, 2022Updated 3 years ago
• reddelexc / hackerone-reports

  View on GitHub
  Top disclosed reports from HackerOne
  ☆5,343Jan 31, 2026Updated last month
• six2dez / OneListForAll

  View on GitHub
  Rockyou for web fuzzing
  ☆3,023Feb 11, 2026Updated 2 weeks ago
• imran-parray / Mind-Maps

  View on GitHub
  Mind-Maps of Several Things
  ☆2,626Jun 29, 2023Updated 2 years ago
• m4ll0k / BBTz

  View on GitHub
  BBT - Bug Bounty Tools (examples💡)
  ☆1,883Apr 5, 2024Updated last year
• hahwul / dalfox

  View on GitHub
  🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
  ☆4,851Updated this week
• arkadiyt / bounty-targets-data

  View on GitHub
  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …
  ☆3,651Updated this week
• yogeshojha / rengine

  View on GitHub
  reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…
  ☆8,479Nov 16, 2025Updated 3 months ago
• devanshbatham / ParamSpider

  View on GitHub
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆3,010Jun 24, 2024Updated last year
• HolyBugx / HolyTips

  View on GitHub
  A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
  ☆1,974Sep 5, 2021Updated 4 years ago
• sehno / Bug-bounty

  View on GitHub
  Ressources for bug bounty hunting
  ☆1,906Dec 1, 2022Updated 3 years ago
• EdOverflow / can-i-take-over-xyz

  View on GitHub
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,565Feb 8, 2025Updated last year
• KathanP19 / JSFScan.sh

  View on GitHub
  Automation for javascript recon in bug bounty.
  ☆1,069Sep 9, 2023Updated 2 years ago
• lutfumertceylan / top25-parameter

  View on GitHub
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,820Jun 9, 2024Updated last year
• kleiton0x00 / Advanced-SQL-Injection-Cheatsheet

  View on GitHub
  A cheat sheet that contains advanced queries for SQL Injection of all types.
  ☆3,149May 13, 2023Updated 2 years ago
• vavkamil / awesome-bugbounty-tools

  View on GitHub
  A curated list of various bug bounty tools
  ☆5,805Feb 9, 2026Updated 2 weeks ago
• s0md3v / Arjun

  View on GitHub
  HTTP parameter discovery suite.
  ☆6,091Feb 20, 2025Updated last year
• pry0cc / axiom

  View on GitHub
  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…
  ☆4,350Sep 30, 2024Updated last year
• lc / gau

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
  ☆4,837Jan 1, 2025Updated last year
• 1ndianl33t / Gf-Patterns

  View on GitHub
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,401Sep 13, 2024Updated last year
• Karanxa / Bug-Bounty-Wordlists

  View on GitHub
  A repository that includes all the important wordlists used while bug hunting.
  ☆1,378Mar 11, 2023Updated 2 years ago
• tomnomnom / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆2,424Mar 13, 2025Updated 11 months ago
• hahwul / WebHackersWeapons

  View on GitHub
  ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
  ☆4,525Feb 15, 2026Updated 2 weeks ago
• Sh1Yo / x8

  View on GitHub
  Hidden parameters discovery suite
  ☆2,027Sep 8, 2024Updated last year
• 1ndianl33t / Bug-Bounty-Roadmaps

  View on GitHub
  Bug Bounty Roadmaps
  ☆1,716Jun 12, 2021Updated 4 years ago
• swisskyrepo / PayloadsAllTheThings

  View on GitHub
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆75,488Feb 16, 2026Updated last week
• ngalongc / bug-bounty-reference

  View on GitHub
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆4,068Jul 31, 2024Updated last year
• projectdiscovery / nuclei-templates

  View on GitHub
  Community curated list of templates for the nuclei engine to find security vulnerabilities.
  ☆11,983Updated this week
• Az0x7 / vulnerability-Checklist

  View on GitHub
  This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
  ☆3,259Feb 10, 2024Updated 2 years ago
• inonshk / 31-days-of-API-Security-Tips

  View on GitHub
  This challenge is Inon Shkedy's 31 days API Security Tips.
  ☆2,231Apr 20, 2022Updated 3 years ago
• 0xmaximus / Galaxy-Bugbounty-Checklist

  View on GitHub
  Tips and Tutorials for Bug Bounty and also Penetration Tests.
  ☆1,650Oct 7, 2025Updated 4 months ago