h33tlit / Parameter-Reflect-Finder
Parameter-Reflect-Finder is a python based tool that helps you find reflected parameters which can have potential XSS or Open redirection vulnerabilities.
☆14Updated 2 years ago
Related projects: ⓘ
- My bug bounty notes☆29Updated 3 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- Some wordlists collected form github to all bug bounty hunters.☆27Updated 3 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆20Updated 3 years ago
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆49Updated 2 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆45Updated last year
- Stuff for bug bounty☆26Updated last year
- Cool HackerOne Reports☆17Updated last year
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆17Updated last year
- Resolvers updated daily for reconftw☆46Updated last year
- This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurity☆21Updated 2 years ago
- Some of the gf patterns which i use☆37Updated 2 years ago
- Script that download 37+ open source nuclei templates☆43Updated 2 years ago
- Magic Header Blind Xss tool (deliver blind xss payloads in request headers).☆27Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆37Updated 3 years ago
- Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack…☆48Updated 2 years ago
- ☆21Updated 3 years ago
- I collected it to help the bug hunter get a reward☆55Updated 2 years ago
- ☆21Updated last year
- Some Tutorials and Things to Help Bug Hunter☆27Updated 3 years ago
- ☆14Updated 2 years ago
- Hidden input parameters finder☆16Updated last year
- ☆32Updated last year
- Bug Bounty Program Discovery tool, that discovers bug Bounty Program via security.txt file by default and you can use custom dork☆15Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Supertruder but better☆33Updated last year
- Basic Bash Script to scrape all subdomains from crtsh in a single run☆18Updated 2 years ago
- ☆10Updated last year
- basic bbtools , buggy , not recommended to use☆33Updated 2 months ago
- ☆27Updated this week