Useful Github Dorks for BugBounty -
☆69Jan 1, 2023Updated 3 years ago
Alternatives and similar repositories for github-dorks
Users that are interested in github-dorks are comparing it to the libraries listed below
Sorting:
- Enhanced 403 bypass header☆21Sep 12, 2022Updated 3 years ago
- ☆19Sep 30, 2024Updated last year
- Extract metadata with SSRF (Server-Side Request Forgery)☆16Jul 23, 2022Updated 3 years ago
- A simple bug bounty utility tool to remove uninteresting entries from a list of URLs.☆14Jul 22, 2024Updated last year
- ☆11Dec 5, 2020Updated 5 years ago
- A proof of concept program that pulls and parses security.txt files at mass.☆29May 31, 2023Updated 2 years ago
- This page should help you with the recon for security issues.☆20Oct 14, 2022Updated 3 years ago
- XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!☆38Aug 26, 2018Updated 7 years ago
- ☆21Jun 29, 2022Updated 3 years ago
- Useful Google Dorks for WebSecurity and Bug Bounty☆1,218Jan 24, 2026Updated last month
- A collection of GitHub dorks for bug bounty hunters☆18Jun 24, 2022Updated 3 years ago
- Powershell modules and commands that come in handy for pentests and red team assessments.☆20Oct 31, 2018Updated 7 years ago
- Custom nuclei templates for bug hunting.....☆26May 30, 2024Updated last year
- PoC for CVE-2022-24342: account takeover via CSRF in GitHub authentication☆36Jul 5, 2022Updated 3 years ago
- Burp Suite extension for parsing Swagger web service definition files☆19Jul 15, 2025Updated 8 months ago
- ☆27Aug 5, 2019Updated 6 years ago
- Find subdomains by searching public certificate records☆16Jun 11, 2024Updated last year
- Operators for google search, list of dorks, resources for advanced google search.☆73Jan 29, 2022Updated 4 years ago
- Script to automate bypassing 403 forbidden status code☆24Jun 18, 2025Updated 9 months ago
- ☆32May 30, 2019Updated 6 years ago
- ☆71Nov 8, 2021Updated 4 years ago
- Burp extension to increment a parameter in each active scan request☆12Jul 16, 2025Updated 8 months ago
- PoC of CVE-2022-22978 vulnerability in Spring Security framework☆12Jun 4, 2022Updated 3 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆19Nov 18, 2019Updated 6 years ago
- Chameleon Wordlists☆15Sep 13, 2022Updated 3 years ago
- Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.☆105Jun 28, 2022Updated 3 years ago
- tools to find xss in a website☆62Apr 27, 2022Updated 3 years ago
- Dorks for Bug Bounty Hunting☆186Jul 16, 2024Updated last year
- hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a ta…☆29Jun 29, 2023Updated 2 years ago
- Write-ups of my findings.☆123Sep 2, 2023Updated 2 years ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆64Aug 9, 2023Updated 2 years ago
- BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!☆29Feb 10, 2024Updated 2 years ago
- Lazy Bloodhound is a toy PHP static code analyzer built on tree-sitter☆13Feb 19, 2021Updated 5 years ago
- Hacker themed Hugo theme based on Nivenly.com☆16Feb 2, 2022Updated 4 years ago
- oneliner commands for bug bounties☆461Jul 25, 2022Updated 3 years ago
- XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.☆318Jun 1, 2022Updated 3 years ago
- The original slurp source☆32Nov 25, 2018Updated 7 years ago
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Nov 15, 2023Updated 2 years ago
- Passive subdomain enumeration tool with http-probe.☆32Apr 30, 2021Updated 4 years ago