Repository to house markdown templates for researchers
☆223Apr 1, 2026Updated 2 months ago
Alternatives and similar repositories for templates
Users that are interested in templates are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…☆237Feb 1, 2022Updated 4 years ago
- Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.☆15Aug 4, 2025Updated 10 months ago
- IIS shortname scanner + bruteforce☆56Feb 18, 2024Updated 2 years ago
- ☆753Jun 26, 2024Updated last year
- Bug bounty API dashboard aggregating data from HackerOne, Bugcrowd and other platforms☆42Aug 13, 2023Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- 🔭 Collection of regexp pattern for security passive scanning☆115Feb 18, 2023Updated 3 years ago
- Create your own recon & vulnerability scanner with Trickest and GitHub☆48Sep 25, 2023Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,518Jan 8, 2026Updated 5 months ago
- Asset inventory of over 800 public bug bounty programs.☆1,573Feb 14, 2025Updated last year
- 🔗 A curated list of awesome Caido related projects☆50Mar 25, 2025Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Jun 17, 2023Updated 2 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,391May 9, 2026Updated last month
- Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application p…☆13Jun 4, 2022Updated 4 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆645Jul 7, 2025Updated 11 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- An AI-powered assistant for hackers and security professionals built for Caido☆36Jan 24, 2026Updated 4 months ago
- De-clutter a list of URLs☆391Mar 8, 2026Updated 3 months ago
- Find subdomains on GitLab.☆106Apr 28, 2024Updated 2 years ago
- Sample Obsidian's vault for web pentesting☆113Aug 8, 2024Updated last year
- ☆46Apr 18, 2023Updated 3 years ago
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…☆12May 28, 2023Updated 3 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆184Nov 22, 2021Updated 4 years ago
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,325Aug 7, 2024Updated last year
- Web cache poisoning vulnerability scanner.☆75May 5, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Scanner for Cross-Site WebSocket Hijacking☆40Feb 19, 2026Updated 3 months ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆398May 28, 2026Updated last week
- Check AWS S3 instances for read/write/delete access☆121Feb 8, 2022Updated 4 years ago
- ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on sc…☆324Jun 2, 2026Updated last week
- A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau☆12Jun 28, 2021Updated 4 years ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,836May 22, 2024Updated 2 years ago
- Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…☆14Feb 6, 2022Updated 4 years ago
- A command based package for simple display of statistics☆26May 25, 2026Updated 2 weeks ago
- A reverse whois tool based on Whoxy API.☆171Mar 31, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆411Dec 24, 2022Updated 3 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆203Aug 5, 2024Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆93May 2, 2024Updated 2 years ago
- View screenshots as a slideshow over http☆15Mar 13, 2020Updated 6 years ago
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…☆5,414Mar 13, 2026Updated 2 months ago
- ☆34Jun 23, 2021Updated 4 years ago
- Ffuf output browser☆38Feb 25, 2023Updated 3 years ago