Alternatives and similar repositories for bughunters

Users that are interested in bughunters are comparing it to the libraries listed below

• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆79Updated last week
• PortSwigger / splitting-the-email-atom
  ☆85Updated 3 months ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆52Updated this week
• matanber / domlogger-configs
  Useful configurations for the DomLogger++ extension
  ☆42Updated last year
• swisscom / bugbounty
  Swisscom Vulnerability Disclosure Policy & Bug Bounty Programme
  ☆103Updated 2 weeks ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆150Updated last year
• vitorfhc / gecko
  Chrome extension for automating CSPT discovery
  ☆104Updated 3 months ago
• avlidienbrunn / archivealchemist
  Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.
  ☆204Updated 2 months ago
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆102Updated last year
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆148Updated 9 months ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆94Updated 3 years ago
• msrkp / MXSS
  Awesome MXSS ??
  ☆53Updated last year
• Zeetaz / FancyTracker
  A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…
  ☆76Updated 3 weeks ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆75Updated 2 years ago
• ngalongc / AuthzAI
  ☆184Updated 11 months ago
• sametsahinnet / jsscm
  JSSCM detects expired domains for Stored XSS exploitation during browsing.
  ☆50Updated 6 months ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆138Updated 6 months ago
• fransr / unpack-burp
  For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)
  ☆54Updated 7 months ago
• caido-community / workflows
  🛠️ Workflows created by the community
  ☆78Updated last week
• trufflesecurity / of-CORS
  ☆152Updated 2 years ago
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆73Updated 3 months ago
• rammarj / csrf-poc-creator
  A Burp Suite extension for CSRF proof of concepts.
  ☆53Updated 2 years ago
• y0k4i-1337 / clairvoyancex
  Obtain GraphQL API schema despite disabled introspection!
  ☆71Updated 4 years ago
• Lupin-Holmes / sandwich
  ☆70Updated last year
• w9w / bugbounty_changelogs
  ☆57Updated 8 months ago
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆140Updated last year
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆95Updated 3 years ago
• JoshuaMart / ScopesExtractor
  A tool for monitoring bug bounty programs across multiple platforms to track scope changes.
  ☆26Updated last week
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆85Updated 4 years ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆196Updated last year