A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆237Feb 1, 2022Updated 4 years ago
Alternatives and similar repositories for bug-bounty-standards
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Jan 2, 2025Updated last year
- Repository to house markdown templates for researchers☆224Updated this week
- 🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addi…☆87Sep 30, 2025Updated 8 months ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆35Feb 12, 2022Updated 4 years ago
- De-clutter a list of URLs☆390Mar 8, 2026Updated 3 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Find endpoints on GitHub.☆219Mar 28, 2023Updated 3 years ago
- Rockyou for web fuzzing☆3,182Mar 11, 2026Updated 3 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,521Jan 8, 2026Updated 5 months ago
- ☆753Jun 26, 2024Updated 2 years ago
- "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.☆1,098Mar 3, 2025Updated last year
- Automated & Manual Wordlists provided by Assetnote☆1,696Feb 27, 2026Updated 4 months ago
- declutters url lists for crawling/pentesting☆1,567Feb 23, 2025Updated last year
- Useful "Match and Replace" burpsuite rules☆373Sep 26, 2023Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆600Aug 4, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆167Mar 5, 2021Updated 5 years ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆1,082Mar 24, 2026Updated 3 months ago
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,266Aug 14, 2024Updated last year
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,405Updated this week
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,845May 22, 2024Updated 2 years ago
- ☆23Mar 29, 2022Updated 4 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,045Jun 6, 2026Updated 3 weeks ago
- A reverse whois tool based on Whoxy API.☆172Mar 31, 2024Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Scanner for Cross-Site WebSocket Hijacking☆40Feb 19, 2026Updated 4 months ago
- Awesome Bug bounty builder Project☆675Feb 15, 2023Updated 3 years ago
- Finding XSS during recon☆270Sep 13, 2022Updated 3 years ago
- XSS payloads designed to turn alert(1) into P1☆1,400Sep 12, 2023Updated 2 years ago
- TLDs finder — check domain name availability across all valid top-level domains.☆108Oct 20, 2024Updated last year
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆399May 28, 2026Updated last month
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆247Oct 20, 2023Updated 2 years ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,676Jun 11, 2026Updated 2 weeks ago
- BBT - Bug Bounty Tools (examples💡)☆1,903Apr 5, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A tool to fastly get all javascript sources/files☆883Jul 4, 2025Updated 11 months ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆878Nov 23, 2022Updated 3 years ago
- A repository that includes all the important wordlists used while bug hunting.☆1,415Mar 11, 2023Updated 3 years ago
- ☆12Feb 18, 2022Updated 4 years ago
- Find related domains of a given domain.☆105Jun 5, 2026Updated 3 weeks ago
- Jeeves SQLI Finder☆215May 13, 2022Updated 4 years ago
- Nuclei Templates Directory☆58Updated this week