Alternatives and similar repositories for bugbounty

Users that are interested in bugbounty are comparing it to the libraries listed below

• redhuntlabs / BurpSuite-Asset_History
  ☆36Updated 8 months ago
• dwisiswant0 / look4jar
  Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
  ☆45Updated 3 years ago
• orangmuda / CVE-2021-20837
  XMLRPC - RCE in MovableTypePoC
  ☆21Updated 3 years ago
• wdahlenburg / CVESearch
  Query various sources for CVE proof-of-concepts
  ☆51Updated 2 years ago
• ethicalhackingplayground / gocrawler
  ☆33Updated 3 years ago
• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆24Updated 2 years ago
• RedSection / jspanda
  client-side prototype pullution vulnerability scanner
  ☆46Updated 4 years ago
• pandaonair / Jolokia-RCE
  ☆17Updated 2 years ago
• samwcyo / CVE-2021-27651-PoC
  RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2
  ☆60Updated 4 years ago
• vortexau / cdn
  Compiles a list of major CDN and WAF subnets.
  ☆66Updated this week
• 69337a398c / Zer0DayLab-SCAMMERS
  Zer0Day Lab Are SCAMMERS
  ☆32Updated 3 years ago
• Ibonok / CVE-2020-4463
  IBM Maximo Asset Management is vulnerable to Information Disclosure via XXE Vulnerability (CVE-2020-4463)
  ☆53Updated 2 years ago
• vulnbe / burpsuite-copy-as-xmlhttprequest
  Copy as XMLHttpRequest BurpSuite extension
  ☆31Updated 4 years ago
• xxux11 / http-methods-discloser
  ☆44Updated 4 years ago
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆52Updated 3 years ago
• bp0lr / dmut-resolvers
  public dns server list for dmut project
  ☆18Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• assetnote / jira-mobile-ssrf-exploit
  Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
  ☆88Updated 3 years ago
• omespino / gcs_instace_takeover
  ☆22Updated last year
• hahwul / MemBi
  All the members of bugbounty and infosec. If you don't know who to follow, see!
  ☆35Updated 3 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆76Updated 5 years ago
• cyberheartmi9 / Proxyshell-Scanner
  nuclei scanner for proxyshell ( CVE-2021-34473 )
  ☆45Updated 2 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 3 years ago
• XalfiE / Oracle-EBS-Security-Audit
  Wordlist to get files/ folders listed by the app that may expose passwords, sensitive file or folders
  ☆22Updated 5 years ago
• ba0zi / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆23Updated 6 years ago
• Co0nan / ParamsExtractor
  A burp-suite plugin that extract all parameter names from in-scope requests
  ☆29Updated 3 years ago
• duckstroms / xss-reflector
  XSS reflector vulnerabilities exploitation extended.
  ☆27Updated 4 years ago
• jenkinsci / nuclei-plugin
  Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.
  ☆13Updated last month
• h1pmnh / h1reports
  A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repository
  ☆19Updated 2 years ago