Best Bug Bounty Roadmap for 2026
β66Jan 18, 2026Updated 4 months ago
Alternatives and similar repositories for Bug-Bounty-Roadmap
Users that are interested in Bug-Bounty-Roadmap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool to hack Graphqlβ15Oct 17, 2023Updated 2 years ago
- PenTest and BugBounty π΅οΈβ15Updated this week
- Free Windows privilege escalation lab inspired by HTB Devel, built for PNPT and OSCP practice.�β24Jan 13, 2026Updated 5 months ago
- OSCP Preparation Guide | Courses, Tricks, Tutorials, Exercises, Machinesβ13Oct 17, 2023Updated 2 years ago
- β45Sep 25, 2025Updated 8 months ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Open-source LLM red-teaming technique toolkit (162 transforms, 36 mutators, 25 tool surfaces). MIT.β311Updated this week
- A 2d javaScript game built without any librariesβ11Oct 30, 2022Updated 3 years ago
- OsintifyX: Powerful Open-source OSINT tool for extracting valuable information from Instagram profiles. OSINT: Instagram Forensics Toolβ12Feb 19, 2024Updated 2 years ago
- Discover Non-Discoverable Bluetooth Classic devicesβ13Oct 10, 2024Updated last year
- Asynchronous scanning libraryβ21Nov 13, 2014Updated 11 years ago
- Cheatsheet, Notes, Payloads and Mayhem for Burp Suite Practitioner Exam (BSCP)β57Jan 31, 2026Updated 4 months ago
- AI-VAPT is an autonomous AI-driven Vulnerability Assessment & Penetration Testing framework combining traditional VAPT with neural intellβ¦β96Oct 7, 2025Updated 8 months ago
- Android Dynamic Class Dumper β dump all DEX files from running Android apps using Fridaβ51Mar 27, 2026Updated 2 months ago
- Wordlists for FFUFβ63May 17, 2025Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer β’ AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Bash wrapper for NetExec to quickly validate compromised credentials across SMB, WinRM, RDP, MSSQL, and FTPβ87May 1, 2026Updated last month
- RingZer0 Writeup.β29Mar 14, 2019Updated 7 years ago
- A sophisticated GUI tool for creating malicious RAR archives that exploit the WinRAR path traversal vulnerability (CVE-2025-8088) using Aβ¦β36Sep 4, 2025Updated 9 months ago
- All-in-One Safety Evaluation Framworkβ50Apr 21, 2026Updated last month
- A comprehensive bug bounty methodology compiled from extensive research, covering web application reconnaissance, checklists, and methodsβ¦β138Nov 11, 2024Updated last year
- This is a Full-stack Car rental website with 3 modules (Admin , Vendor , User ) Admin can dynamically manage content , availability of caβ¦β78May 29, 2025Updated last year
- USRLINKS v1.0 - The Ultimate Username Reconnaissance Toolβ24Oct 6, 2025Updated 8 months ago
- A sub-domain enumeration toolβ20May 18, 2020Updated 6 years ago
- Multi-Agent System for Automated Penetration Testing (MASAPT)β30Dec 22, 2021Updated 4 years ago
- Proton VPN Special Offer - Get 70% off β’ AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- HTML parser for PEAS output with additional featuresβ154Feb 15, 2026Updated 3 months ago
- A Multilayered AV/EDR Evasion Framework and AV Testing Tool.β32Jun 28, 2025Updated 11 months ago
- A set of tools and resources for analysis of Havoc C2β28Feb 27, 2024Updated 2 years ago
- Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privilegesβ27Nov 20, 2024Updated last year
- Tool to obtain hash using MS-SNTP for user accountsβ31Jan 22, 2025Updated last year
- FileFetcher is a Python tool that extracts and filters URLs from archived Wayback Machine data based on file types like .pdf, .zip, .sql,β¦β20Jan 16, 2025Updated last year
- C# implementation of harmj0y's PowerViewβ50Mar 22, 2020Updated 6 years ago
- Red Team tools containerizedβ78May 12, 2026Updated last month
- An Advanced Darkweb OSINT Toolβ24Jun 19, 2025Updated 11 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- a powerful tool designed to automate the detection of Server-Side Request Forgery (SSRF) and Open Redirect vulnerabilitiesβ22Oct 15, 2024Updated last year
- Open source code for Xbomber website community edition.β44Apr 29, 2024Updated 2 years ago
- πΈοΈ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. πΈοΈβ228May 22, 2023Updated 3 years ago
- A curated collection of bug bounty tips, tricks, payloads, and bypass techniquesβ46Apr 28, 2026Updated last month
- Itβs an OSINT reconnaissance poc powered by Local LLMs (Ollama). You can feed it an email, domain, or IP, and it automatically performs mβ¦β83Nov 20, 2025Updated 6 months ago
- Passive Web Vulnerability Detection Toolβ38May 5, 2025Updated last year
- Dalvik bytecode emulator for Android static analysis | String decryption | Multi-DEX | No Android runtime requiredβ114Jan 3, 2026Updated 5 months ago