Documenting my security research journey: This repository contains detailed vulnerability write-ups, proof-of-concept (PoC) exploits, and the custom automation tools I use for reconnaissance and system assessment.
☆46Jun 30, 2026Updated 2 weeks ago
Alternatives and similar repositories for bug-bounty
Users that are interested in bug-bounty are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A simple HAR-based JavaScript recon automation kit for organizing JS files, endpoints, secrets, and gf-filtered attack surface during bug…☆16May 20, 2026Updated last month
- Explore free, self-hostable network services & web apps: email, file sharing, CMS, and more. Includes setup guides and Docker support for…☆15Apr 16, 2026Updated 2 months ago
- Stealth hybrid URL mapper☆17May 1, 2026Updated 2 months ago
- A library used to detect vanishing points and camera parameters from an image.☆10Apr 20, 2018Updated 8 years ago
- ☆16Oct 14, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆35Feb 10, 2024Updated 2 years ago
- A curated collection of my security research and bug bounty writeups, documenting real-world vulnerabilities, exploitation methods☆20Jun 29, 2026Updated 2 weeks ago
- ☆19Jun 21, 2024Updated 2 years ago
- ☆96May 11, 2026Updated 2 months ago
- Pentest and manual code review templates -- web/API, cloud (AWS/GCP/Azure), mobile (iOS/Android), thick client, hardware/IoT, plus 11 lan…☆29Apr 12, 2026Updated 3 months ago
- Bug bounty methodology, checklists, and hunting notes.☆21Updated this week
- 必应每日壁纸数据采集脚本、必应壁纸历史数据API和必应壁纸在线浏览。☆10Dec 31, 2020Updated 5 years ago
- powerfull pentesting tool to checking email by smtp command☆10Feb 29, 2024Updated 2 years ago
- Replay any request as another user to find IDOR/BOLA/BFLA, right in the browser.☆26Jun 16, 2026Updated 3 weeks ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- My Main App Hacking CheckList☆31Jun 20, 2026Updated 3 weeks ago
- Gampung tools for find nuclei template from github☆12Sep 6, 2023Updated 2 years ago
- My personal research on quantum mechanics and quantum computing.☆16Apr 16, 2026Updated 2 months ago
- 🧸 🤖 Determine the collection slug for a collection on OpenSea.☆12Apr 19, 2023Updated 3 years ago
- I was searching for such resource to work as cheat sheet series and guide me through different attack scenarios for API attacks, didn’t f…☆15May 5, 2025Updated last year
- AI-powered security assessment SKILLS for your codebase. Multi-language (JS, Go, Python, Rust, Java, PHP, Ruby, C#). Works with Claude Co…☆66Feb 23, 2026Updated 4 months ago
- A Python tool to resolve domains to IPs, fetch related CVEs, and display open ports☆17Nov 21, 2025Updated 7 months ago
- F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB☆13May 11, 2023Updated 3 years ago
- Wireless Hacker is an open-source toolkit for auditing the security of authorized Wi-Fi networks. Built for ethical hackers, penetration …☆31Jul 5, 2026Updated last week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Intelligence-driven reconnaissance framework for bug bounty hunters and security professionals.☆24Updated this week
- An advanced Out-of-Band and In-Band SSRF fuzzing scanner with dynamic request tracking.☆36Jun 18, 2026Updated 3 weeks ago
- A collection of advanced Python scripts for cybersecurity, penetration testing, and ethical hacking.☆124Updated this week
- Get a Temporary Machine via GitHub's Workflow Run.☆18May 4, 2026Updated 2 months ago
- Scan strings or files for malware using the Windows Antimalware Scan Interface☆30Mar 24, 2023Updated 3 years ago
- ☆106Mar 30, 2026Updated 3 months ago
- IP address filter by City☆12Jan 17, 2025Updated last year
- Ruggedy Vulnerability Management App☆14Dec 8, 2019Updated 6 years ago
- react2shell CVE-2025-55182 PoC☆30Dec 7, 2025Updated 7 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Attempts to suspend all known AV/EDRs processes on Windows using syscalls and the undocumented NtSuspendProcess API. Made with <3 for pen…☆12May 11, 2023Updated 3 years ago
- ☆15Jun 19, 2024Updated 2 years ago
- Collection of documentation, tools, and tips related to vulnerability research.☆94Updated this week
- A powerful single-file offline OSCP+/OSEP Penetration Testing Cheatsheet Terminal with 580+ commands, variable substitution, favorites, n…☆51Updated this week
- GromHacks Labs -- The payload lists they don't want you to have. 1,324 injection probes beamed down from the mothership to detect what's …☆35Apr 12, 2026Updated 3 months ago
- Self-hosted external attack surface scanner. Subdomain enumeration + takeover detection, ports, CVEs, TLS, SSH, web vulns, EPSS/KEV prior…☆17Updated this week
- ☆11Mar 16, 2025Updated last year