Alternatives and similar repositories for awesome-bug-bounty-tips:

Users that are interested in awesome-bug-bounty-tips are comparing it to the libraries listed below

• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• 0xdekster / deksterecon
  Web Application recon automation
  ☆124Updated 4 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆214Updated 6 months ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆206Updated 8 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 4 years ago
• 0xspade / Automated-Scanner
  Trying to make automated recon for bug bounties
  ☆253Updated 3 years ago
• PortSwigger / xss-validator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆87Updated 3 years ago
• shiblisec / Rekon
  The project contains multiple shell scripts for automating the tasks during recon.
  ☆175Updated last year
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆295Updated 5 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆197Updated 4 years ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆102Updated 4 years ago
• ethicalhackingplayground / ssrf-tool
  ☆145Updated 2 years ago
• MilindPurswani / Syborg
  Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)
  ☆146Updated 4 years ago
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆170Updated 4 years ago
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆162Updated last year
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• gauravnarwani97 / Trishul
  Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vu…
  ☆236Updated 4 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆142Updated 3 years ago
• Mad-robot / Spartan
  My Recon Automation
  ☆194Updated 3 years ago
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆272Updated 4 years ago
• wish-i-was / femida
  Automated blind-xss search for Burp Suite
  ☆283Updated 5 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆86Updated 8 years ago
• jakejarvis / bounty-domains
  List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)
  ☆71Updated 3 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆225Updated 3 months ago
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• BugBountyResources / Resources
  A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms ti…
  ☆90Updated 3 years ago
• tcpiplab / Web-App-Hacking-Notes
  Notes I've taken while working through various web app pentesting labs.
  ☆92Updated 6 years ago
• edduu / Arjun
  HTTP parameter discovery suite.
  ☆94Updated 5 years ago