br0k3n-1337 / github-dorks-for-bug-bounty-hunters

Related projects ⓘ

Alternatives and complementary repositories for github-dorks-for-bug-bounty-hunters

• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• MShahine / Bug-Bounty-Recon
  All The Notes And Tips I FOund In Github And Twitter I Put Them Here
  ☆30Updated 4 years ago
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated last year
• adrianlarion / pegaxss
  Magic Header Blind Xss tool (deliver blind xss payloads in request headers).
  ☆27Updated 3 years ago
• leetIbrahim / JSNotify
  JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…
  ☆18Updated last year
• ethicalhackingplayground / aem-eye
  A very simple AEM detector written in rust.🦀
  ☆20Updated last year
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆43Updated 3 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆54Updated last year
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆54Updated 2 years ago
• emadshanab / Extract-and-Probe-all-the-ips-associated-with-same-host-via-httpx
  ☆12Updated 2 years ago
• bsysop / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆16Updated 3 years ago
• Ravirajrao / HackerOne-Reports
  Cool HackerOne Reports
  ☆18Updated 2 years ago
• six2dez / resolvers_reconftw
  Resolvers updated daily for reconftw
  ☆46Updated last year
• tamimhasan404 / Gau-Expose
  It grep subdomains, email/username, build custom wordlist etc from gau results
  ☆45Updated 2 years ago
• byt3hx / gup
  gup aka Get All Urls parameters to create wordlists for brute forcing parameters.
  ☆17Updated 2 years ago
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆33Updated 2 years ago
• Sybil-Scan / TLDbrute
  A simple utility to generate domain names with all possible TLDs
  ☆23Updated last year
• akshaysharma016 / aem-detector
  ☆20Updated last year
• RikunjSindhwad / Task-Ninja-Workflows
  This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja
  ☆21Updated 3 months ago
• Saitle / Yamilicious
  Custom nuclei templates for bug hunting.....
  ☆23Updated 5 months ago
• plenumlab / Imposteserum-extension
  A powerful Burp extension to make bounty rain
  ☆14Updated 2 years ago
• 0xPugal / bugbounty_profile
  Automate bug bounty recon using bash alias
  ☆15Updated 3 months ago
• xnl-h4ck3r / ScriptView-Burp-Extension
  A Burp Extension that makes it easier to view all script code on a Response.
  ☆12Updated last year
• emadshanab / seclist_subdomains_combined
  ☆10Updated 2 years ago
• KathanP19 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆9Updated 4 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• bp0lr / myGF_patterns
  ☆21Updated 3 years ago
• PatrikFehrenbach / vilicus
  vīlicus is a bug bounty api dashboard
  ☆40Updated last year