Tools, data, and contact lists relevant to The disclose.io Project.
☆326Mar 20, 2026Updated 3 weeks ago
Alternatives and similar repositories for resources
Users that are interested in resources are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Open-source vulnerability disclosure and bug bounty program database☆1,055Mar 28, 2026Updated 2 weeks ago
- The current website at https://disclose.io.☆19Apr 4, 2026Updated last week
- A Go scraper that validates security.txt files and outputs them in the disclose.io JSON format.☆23May 18, 2025Updated 10 months ago
- Open-source vulnerability disclosure policy templates.☆68Feb 9, 2026Updated 2 months ago
- Misc bounty and vulndisc things☆85Jan 4, 2021Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A standard allowing organizations to nominate security contact points and policies via DNS TXT records.☆34Mar 20, 2026Updated 3 weeks ago
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆5,632Aug 6, 2023Updated 2 years ago
- Bug Bounty Recon Script☆18Aug 14, 2020Updated 5 years ago
- A community-powered collection of all known bug bounty platforms, vulnerability disclosure platforms, and crowdsourced security platforms…☆892Mar 20, 2026Updated 3 weeks ago
- Collection of legal threats against good faith Security Researchers; vulnerability disclosure gone wrong. A continuation of work started …☆322Mar 27, 2026Updated 2 weeks ago
- A list of resources for those interested in getting started in bug bounties☆11,956Jul 23, 2024Updated last year
- A small script for my recon during bug hunting. Needs some modifications☆17Mar 5, 2020Updated 6 years ago
- A list of resources for those interested in getting started in bug bounties inspired from https://github.com/nahamsec/Resources-for-Beg…☆170Aug 1, 2020Updated 5 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆31Mar 2, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Burp Extension that copies a request and builds a FFUF skeleton☆112Sep 29, 2023Updated 2 years ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,153Aug 14, 2024Updated last year
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 5 years ago
- Pythonize Intruder Payload☆13Dec 15, 2020Updated 5 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,361Apr 4, 2026Updated last week
- ☆209Jul 3, 2021Updated 4 years ago
- Reverse proxies cheatsheet☆1,857Nov 4, 2023Updated 2 years ago
- Query various sources for CVE proof-of-concepts☆53Jun 1, 2023Updated 2 years ago
- Find endpoints on GitHub.☆219Mar 28, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules☆186Oct 30, 2021Updated 4 years ago
- A free, open-source, multi-lingual, template-based VDP policy, safe harbor clause, securitytxt, and DNS Security TXT generator.☆16Mar 28, 2026Updated 2 weeks ago
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …☆3,698Updated this week
- My Tools For Bug Bounty☆70Sep 23, 2024Updated last year
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Feb 19, 2021Updated 5 years ago
- A curated list of amazingly awesome OSINT☆19Oct 7, 2025Updated 6 months ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Nov 8, 2021Updated 4 years ago
- ☆16Dec 7, 2025Updated 4 months ago
- Service-Now Article Bruteforcer☆16Jun 5, 2020Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Dump Lsass Memory Using a Reflective Dll☆14Feb 4, 2022Updated 4 years ago
- Run all your bug bounty VPN profiles in parallel and expose them via multiple local SOCKS proxies.☆113Nov 14, 2021Updated 4 years ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆528Apr 23, 2025Updated 11 months ago
- Community curated list of public bug bounty and responsible disclosure programs.☆1,288Mar 30, 2026Updated 2 weeks ago
- Asset inventory of over 800 public bug bounty programs.☆1,536Feb 14, 2025Updated last year
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆964Dec 31, 2021Updated 4 years ago
- View screenshots as a slideshow over http☆15Mar 13, 2020Updated 6 years ago