An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
☆218Nov 3, 2020Updated 5 years ago
Alternatives and similar repositories for bbr
Users that are interested in bbr are comparing it to the libraries listed below
Sorting:
- A companion repo to accompany detailed guides and YouTube content to allow users to follow along☆13Aug 29, 2020Updated 5 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Dec 11, 2020Updated 5 years ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆192Sep 6, 2020Updated 5 years ago
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.☆1,286Sep 12, 2025Updated 6 months ago
- A DNS Bruteforcing Wordlist Generator☆361Feb 22, 2023Updated 3 years ago
- DNS and Target HTTP History Local Storage and Search☆63Feb 14, 2021Updated 5 years ago
- Tool to find JavaScript files on Websites☆528Nov 2, 2023Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆641Jul 7, 2025Updated 8 months ago
- Change monitoring app that checks the content of web pages in different periods.☆358Feb 21, 2026Updated 3 weeks ago
- You can read the writeup on this script here☆192Sep 30, 2021Updated 4 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,356Sep 30, 2024Updated last year
- Open-source vulnerability disclosure and bug bounty program database☆1,054Feb 9, 2026Updated last month
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆303Feb 12, 2023Updated 3 years ago
- Secret and/or credential patterns used for gf.☆243Feb 10, 2023Updated 3 years ago
- A tool to find subdomains or domains from passive sources.☆112Jan 20, 2021Updated 5 years ago
- Python library and CLI for the Bug Bounty Recon API☆230Jun 5, 2021Updated 4 years ago
- BBT - Bug Bounty Tools (examples💡)☆1,884Apr 5, 2024Updated last year
- a javascript change monitoring tool for bugbounties☆713Jul 31, 2024Updated last year
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆213Mar 31, 2020Updated 5 years ago
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…☆5,244Mar 13, 2026Updated last week
- Horizontal Domain Discovery☆77May 22, 2023Updated 2 years ago
- Finds Directory Listings or open S3 buckets from a list of URLs☆52Dec 1, 2021Updated 4 years ago
- A collection of tools to perform searches on GitHub.☆1,471Feb 9, 2023Updated 3 years ago
- Trying to make automated recon for bug bounties☆255May 3, 2021Updated 4 years ago
- Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…☆75Mar 22, 2024Updated last year
- ☆172Apr 28, 2021Updated 4 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆367Jul 23, 2022Updated 3 years ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆207Jun 21, 2023Updated 2 years ago
- A fast & light web screenshot without headless browser but Chrome DevTools Protocol!☆185Feb 23, 2026Updated 3 weeks ago
- Urls status code & content length checker☆146Oct 1, 2020Updated 5 years ago
- Weaponizing Live CT logs for automated monitoring of assets☆133Sep 12, 2021Updated 4 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Nov 24, 2023Updated 2 years ago
- Extract relative urls from a heap snapshot☆87May 30, 2021Updated 4 years ago
- Automation for javascript recon in bug bounty.☆1,069Sep 9, 2023Updated 2 years ago
- Random utilities from my security projects that might be useful to others☆183Jan 26, 2025Updated last year
- search Google and extract results directly. skip all the click-through links and other sketchiness☆504Jul 12, 2022Updated 3 years ago
- Making Favicon.ico based Recon Great again !☆1,269Aug 29, 2023Updated 2 years ago
- Burp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.☆62Nov 29, 2022Updated 3 years ago
- Fetch many paths for many hosts - without killing the hosts☆1,707Feb 3, 2024Updated 2 years ago