A set of tools, procedures, and playbooks for performing bug bounties
☆17Dec 2, 2018Updated 7 years ago
Alternatives and similar repositories for attack-tools
Users that are interested in attack-tools are comparing it to the libraries listed below
Sorting:
- c4mund0n60 is a tool that use output of known tools for generate smart information about a domain☆11Sep 20, 2023Updated 2 years ago
- ☆15Mar 21, 2025Updated 11 months ago
- A tools for JavaScript Recon☆24Jul 25, 2020Updated 5 years ago
- An Advanced tool to scan hundreds of IP's in Seconds for CVE's, Open Ports And Web Technologies.☆22Apr 30, 2022Updated 3 years ago
- Bug Bounty Tools☆34Jul 2, 2020Updated 5 years ago
- Tool to automate recon☆42Dec 28, 2021Updated 4 years ago
- Collection of tools, scripts, one-liners, templates, dorks and more☆12Dec 13, 2025Updated 2 months ago
- ☆13Jun 26, 2025Updated 8 months ago
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆18Mar 13, 2023Updated 2 years ago
- Bug Bounty tool to automate the recon process.☆12Oct 4, 2023Updated 2 years ago
- ☆10Apr 6, 2024Updated last year
- A simple script to check for insecurely exposed git repositories.☆12Mar 17, 2019Updated 6 years ago
- Brahmastra empowers security teams to fortify their defenses and identify potential vulnerabilities in their systems. This comprehensive …☆18Aug 20, 2023Updated 2 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆13Mar 5, 2021Updated 4 years ago
- WpDisect is a wordpress hacking tool that finds vulnerabilities in wordpress.☆14Feb 20, 2022Updated 4 years ago
- ☆16Oct 30, 2022Updated 3 years ago
- Shared wordlists used for common subdomains , directory bruteforcing etc.☆10May 26, 2025Updated 9 months ago
- A substitute repository put up on public demand for the original Awesome WAF repository (https://github.com/0xInfection/Awesome-WAF) whic…☆12May 3, 2019Updated 6 years ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…☆14Oct 29, 2019Updated 6 years ago
- ☆12Apr 14, 2021Updated 4 years ago
- ☆15Oct 11, 2023Updated 2 years ago
- Simple recon tool automates your recon process☆16Apr 15, 2023Updated 2 years ago
- Secrets detection based on regular expressions.☆22Apr 15, 2025Updated 10 months ago
- ☆12May 16, 2020Updated 5 years ago
- A notification script to help with Recon Stuff☆14Jun 8, 2021Updated 4 years ago
- Small golang program for ssh brute force attacks☆11Jan 23, 2019Updated 7 years ago
- I will share my bug bounty tips here☆32Mar 6, 2023Updated 2 years ago
- Some Tutorials and Things to Help Bug Hunter☆31Mar 17, 2021Updated 4 years ago
- Find any website vulnerability and bugs in few second.☆35Oct 1, 2020Updated 5 years ago
- ☆59Apr 8, 2021Updated 4 years ago
- This script identifies Host Header Injection vulnerabilities in a list of URLs or a specific domain, outputting the vulnerable locations …☆15May 23, 2023Updated 2 years ago
- Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for m…☆12Feb 1, 2022Updated 4 years ago
- Bypass 4xx HTTP response status codes and more. Based on PycURL.☆17Jun 27, 2022Updated 3 years ago
- This extension provides a central location for viewing all GraphQL requests/responses within a Burp project. It provides a clean UI that …☆15Feb 24, 2022Updated 4 years ago
- Collection of templates from various resources☆42Dec 5, 2025Updated 2 months ago
- ☆33Oct 29, 2020Updated 5 years ago
- List of XSS Payloads☆15Jul 5, 2022Updated 3 years ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Dec 4, 2021Updated 4 years ago
- This repo offers comprehensive information, necessary tools, and instructional videos for beginners in Android penetration testing, provi…☆22Jun 12, 2023Updated 2 years ago