blackhatethicalhacking / awesome-bugbounty-toolsLinks
A curated list of various bug bounty tools
☆18Updated 3 years ago
Alternatives and similar repositories for awesome-bugbounty-tools
Users that are interested in awesome-bugbounty-tools are comparing it to the libraries listed below
Sorting:
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges☆32Updated 3 years ago
- Sniffcon has a wide list of powerful online bug bounty tools which can be used to find security vulnerabilities.☆40Updated 2 years ago
- Find secrets and passwords in container images and file systems☆14Updated 2 years ago
- A tool for generating reverse shell payloads on the fly.☆10Updated 3 years ago
- a drop-in replacement for Nmap powered by shodan.io☆10Updated 3 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆11Updated 4 years ago
- An automated e-mail OSINT tool☆23Updated 3 years ago
- A tool for Subdomain takeovers detection☆26Updated 2 years ago
- Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The…☆11Updated 3 years ago
- An advanced multithreaded admin panel finder written in python.☆14Updated 4 years ago
- Take potentially dangerous PDFs, office documents, or images and convert them to safe PDFs☆12Updated 2 years ago
- 💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh☆34Updated 3 years ago
- A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228☆25Updated 3 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆56Updated 3 years ago
- Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is merge…☆25Updated 3 years ago
- This tool will resolve a list of Domains, IPs, Hosts, URLs and save the results for valid/invalid fast!☆17Updated 3 years ago
- Multi-threaded URL enumeration/content-discovery tool in Python.☆107Updated last year
- Simple API for storing all incoming XSS requests and various XSS templates.☆47Updated last year
- List of Github repositories and articles with list of dorks for different search engines☆30Updated 3 years ago
- Just another vulnerable web application.☆36Updated last year
- Automated network asset, email, and social media profile discovery and cataloguing.☆12Updated 3 years ago
- Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers☆29Updated 9 months ago
- Web application pentesting recon☆23Updated 5 years ago
- An AIO Tool to check for Vulnerable Amazon S3 Buckets as part of Bug Bounty, the uniqueness of this tool is that it can take a file full …☆38Updated last year
- Bash script for CTF automating basic enumeration☆43Updated 3 years ago
- This bash script tool, will perform advanced subdomain enumeration, save the results, it will then probe the subdomains into urls, save t…☆26Updated last year
- WpDisect is a wordpress hacking tool that finds vulnerabilities in wordpress.☆14Updated 3 years ago
- Burp Suite extension for extracting metadata from files☆20Updated 4 years ago
- Small python script to look for common vulnerabilities on SMTP server.☆51Updated last year
- ☆38Updated 4 years ago