Alternatives and similar repositories for bughunters

Users that are interested in bughunters are comparing it to the libraries listed below

• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆77Updated this week
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆101Updated last year
• PortSwigger / splitting-the-email-atom
  ☆83Updated 2 months ago
• rammarj / csrf-poc-creator
  A Burp Suite extension for CSRF proof of concepts.
  ☆52Updated 2 years ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆195Updated last year
• vitorfhc / gecko
  Chrome extension for automating CSPT discovery
  ☆98Updated 2 months ago
• y0k4i-1337 / clairvoyancex
  Obtain GraphQL API schema despite disabled introspection!
  ☆70Updated 4 years ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆148Updated 8 months ago
• matanber / domlogger-configs
  Useful configurations for the DomLogger++ extension
  ☆38Updated last year
• caido-community / workflows
  🛠️ Workflows created by the community
  ☆77Updated last month
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆148Updated last year
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆94Updated 3 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆85Updated 3 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆182Updated 3 years ago
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆94Updated 3 years ago
• trufflesecurity / of-CORS
  ☆151Updated 2 years ago
• assetnote / h2csmuggler
  ☆75Updated last year
• fransr / unpack-burp
  For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)
  ☆54Updated 6 months ago
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆140Updated 11 months ago
• avlidienbrunn / archivealchemist
  Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.
  ☆203Updated last month
• ngalongc / AuthzAI
  ☆184Updated 10 months ago
• yeswehack / xsstools
  xss development frameworks, with the goal of making payload writing easier.
  ☆147Updated last year
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆158Updated last year
• JoshuaMart / ScopesExtractor
  A tool for monitoring bug bounty programs across multiple platforms to track scope changes.
  ☆26Updated last week
• tess-ss / recon-ninja
  Recon-Ninja
  ☆88Updated last year
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆74Updated 2 years ago
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆71Updated 2 months ago
• Zeetaz / FancyTracker
  A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…
  ☆40Updated 2 weeks ago
• swisscom / bugbounty
  Swisscom Vulnerability Disclosure Policy & Bug Bounty Programme
  ☆101Updated last month
• Rhynorater / rebindMultiA
  ☆64Updated 2 years ago