Alternatives and similar repositories for bugbounty

Users that are interested in bugbounty are comparing it to the libraries listed below

• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆24Updated 2 years ago
• dwisiswant0 / look4jar
  Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
  ☆45Updated 3 years ago
• wdahlenburg / CVESearch
  Query various sources for CVE proof-of-concepts
  ☆51Updated 2 years ago
• redhuntlabs / BurpSuite-Asset_History
  ☆36Updated 7 months ago
• RedSection / jspanda
  client-side prototype pullution vulnerability scanner
  ☆46Updated 4 years ago
• pandaonair / Jolokia-RCE
  ☆17Updated 2 years ago
• orangmuda / CVE-2021-20837
  XMLRPC - RCE in MovableTypePoC
  ☆21Updated 3 years ago
• vulnbe / burpsuite-copy-as-xmlhttprequest
  Copy as XMLHttpRequest BurpSuite extension
  ☆31Updated 4 years ago
• vortexau / cdn
  Compiles a list of major CDN and WAF subnets.
  ☆66Updated last week
• samwcyo / CVE-2021-27651-PoC
  RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2
  ☆60Updated 4 years ago
• XalfiE / Oracle-EBS-Security-Audit
  Wordlist to get files/ folders listed by the app that may expose passwords, sensitive file or folders
  ☆22Updated 5 years ago
• hahwul / MemBi
  All the members of bugbounty and infosec. If you don't know who to follow, see!
  ☆35Updated 3 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆77Updated 5 years ago
• Co0nan / ParamsExtractor
  A burp-suite plugin that extract all parameter names from in-scope requests
  ☆29Updated 3 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 3 years ago
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆52Updated 3 years ago
• xxux11 / http-methods-discloser
  ☆44Updated 4 years ago
• ethicalhackingplayground / gocrawler
  ☆33Updated 3 years ago
• jenkinsci / nuclei-plugin
  Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.
  ☆13Updated 3 weeks ago
• h1pmnh / h1reports
  A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repository
  ☆19Updated 2 years ago
• S1lkys / CVE-2020-15906
  Writeup of CVE-2020-15906
  ☆48Updated 4 years ago
• raadfhaddad / Insecure-Deserialization
  Insecure Deserialization, PDF and lab
  ☆18Updated 5 years ago
• kiranreddyrebel / PostMessage_Fuzz_Tool
  #BugBounty #BugBounty Tools #WebDeveloper Tool
  ☆38Updated 3 months ago
• lorenzog / burpAddCustomHeader
  A Burp Suite extension to add a custom header (e.g. JWT)
  ☆19Updated 3 years ago
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆30Updated 5 years ago
• cyberheartmi9 / Proxyshell-Scanner
  nuclei scanner for proxyshell ( CVE-2021-34473 )
  ☆44Updated 2 years ago
• vp777 / surferFTP
  SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients
  ☆70Updated 4 years ago
• assetnote / jira-mobile-ssrf-exploit
  Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
  ☆88Updated 3 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 3 years ago