codingo / bbr
An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
☆210Updated 4 years ago
Alternatives and similar repositories for bbr:
Users that are interested in bbr are comparing it to the libraries listed below
- Random utilities from my security projects that might be useful to others☆179Updated last month
- Burp Extension for easily creating Wordlists☆211Updated 3 years ago
- A script that can resolve an input file of domains and scan them with masscan☆157Updated 4 years ago
- Poor (rich?) man's bug bounty pipeline https://dubell.io☆274Updated last year
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆204Updated last year
- Secret and/or credential patterns used for gf.☆238Updated 2 years ago
- Python library and CLI for the Bug Bounty Recon API☆223Updated 3 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆306Updated 3 months ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆208Updated 4 years ago
- You can read the writeup on this script here☆193Updated 3 years ago
- ☆370Updated 3 years ago
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆219Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆622Updated 3 months ago
- Burp extension to create target specific and tailored wordlist from burp history.☆237Updated 3 years ago
- Turbo Intruder Scripts☆222Updated 4 years ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆206Updated 8 months ago
- Yet another subdomain finder☆202Updated 5 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆153Updated 2 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆364Updated 2 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆300Updated 2 years ago
- Continuous monitoring for JavaScript files☆219Updated 5 years ago
- ☆209Updated 3 years ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆189Updated 4 years ago
- A Bind9 server for pentesters to use for Out-of-Band vulnerabilities☆188Updated 5 years ago
- information gathering☆273Updated 11 months ago
- Just some public notes that can be useful and i want let the world knows.☆86Updated 4 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆172Updated 3 years ago
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆176Updated 4 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Updated 4 years ago
- Unofficial documentation for the great tool Param Miner☆176Updated 2 years ago