MShahine / Bug-Bounty-Recon

Related projects ⓘ

Alternatives and complementary repositories for Bug-Bounty-Recon

• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆43Updated 3 years ago
• emadshanab / Adobe-Experience-Manager
  ☆33Updated 3 years ago
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆33Updated 2 years ago
• BrownBearSec / Utils-and-Wrappers
  A repo for tools, utils, and wrappers that are to small to put in their own repo.
  ☆23Updated last year
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆38Updated 3 years ago
• ihebski / db
  Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]
  ☆28Updated 3 years ago
• ethicalhackingplayground / erebus-templates
  Community curated list of templates for the erebus engine to find security vulnerabilities.
  ☆16Updated 3 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆54Updated last year
• DK9510 / web-app-hacker-s-handbook-notes
  My nots from Web application Hacker's Handbook
  ☆17Updated 2 years ago
• dark-warlord14 / ffufalias
  Alias for storing ffuf results
  ☆20Updated 4 years ago
• gwen001 / bxss
  Alternative to XSS Hunter for blind XSS.
  ☆48Updated last year
• Sybil-Scan / TLDbrute
  A simple utility to generate domain names with all possible TLDs
  ☆23Updated last year
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated last year
• zeronine9 / Blind_SPOT
  Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI
  ☆27Updated 3 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• tamimhasan404 / Gau-Expose
  It grep subdomains, email/username, build custom wordlist etc from gau results
  ☆45Updated 2 years ago
• r00tkie / grep-pattern
  collection of various grep patterns collected from tomnomnom/gf and other places
  ☆21Updated 4 years ago
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆54Updated 2 years ago
• Roni-Carta / onhandlers
  ☆13Updated 2 years ago
• bsysop / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆16Updated 3 years ago
• emadshanab / Blind-XSS-burp-match-and-replace
  ☆27Updated 10 months ago
• rook1337 / hakrawlerx8chain
  ☆14Updated 3 years ago
• BitTheByte / BitTraversal
  Burpsuite Plugin to detect Directory Traversal vulnerabilities
  ☆28Updated 3 years ago
• Sicks3c / Reconizer
  ☆38Updated 3 years ago
• bp0lr / myGF_patterns
  ☆21Updated 3 years ago