gradiuscypher / bounty_tools
Various tools for managing bug bounty recon and exploration.
☆46Updated last year
Related projects: ⓘ
- ☆35Updated this week
- OWASP Skanda - SSRF Exploitation Framework☆36Updated 11 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆25Updated 6 years ago
- WhiteBox CMS analysis☆68Updated last year
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 5 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆51Updated 3 years ago
- ☆34Updated 4 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 6 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆41Updated 11 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 6 years ago
- Scan for open S3 buckets and dump☆35Updated 6 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- ☆13Updated this week
- ☆26Updated this week
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 5 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 7 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 5 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 7 years ago
- PHDAYS |||☆17Updated 11 years ago
- A collection of scripts used to interact with the Burp Rest API☆51Updated 5 years ago
- PHP tool to test XSS☆23Updated 4 years ago
- a collection of payloads for common webapps☆73Updated 11 years ago
- ☆61Updated this week
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated last year
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆24Updated 7 years ago
- Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability☆10Updated 6 years ago
- Pillage a git repo found in an accessible web root☆59Updated 13 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆22Updated 7 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago