A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆236Feb 1, 2022Updated 4 years ago
Alternatives and similar repositories for bug-bounty-standards
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Jan 2, 2025Updated last year
- Repository to house markdown templates for researchers☆218Apr 1, 2026Updated 2 weeks ago
- 🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addi…☆85Sep 30, 2025Updated 6 months ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Feb 12, 2022Updated 4 years ago
- De-clutter a list of URLs☆386Mar 8, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Find endpoints on GitHub.☆219Mar 28, 2023Updated 3 years ago
- Rockyou for web fuzzing☆3,121Mar 11, 2026Updated last month
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,507Jan 8, 2026Updated 3 months ago
- ☆755Jun 26, 2024Updated last year
- "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.☆1,087Mar 3, 2025Updated last year
- declutters url lists for crawling/pentesting☆1,545Feb 23, 2025Updated last year
- Useful "Match and Replace" burpsuite rules☆368Sep 26, 2023Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆598Aug 4, 2024Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Mar 5, 2021Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Automated & Manual Wordlists provided by Assetnote☆1,662Feb 27, 2026Updated last month
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆1,074Mar 24, 2026Updated 3 weeks ago
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,361Updated this week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,172Aug 14, 2024Updated last year
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,812May 22, 2024Updated last year
- ☆23Mar 29, 2022Updated 4 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,039Aug 23, 2025Updated 7 months ago
- A reverse whois tool based on Whoxy API.☆169Mar 31, 2024Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Scanner for Cross-Site WebSocket Hijacking☆41Feb 19, 2026Updated 2 months ago
- Awesome Bug bounty builder Project☆676Feb 15, 2023Updated 3 years ago
- Finding XSS during recon☆272Sep 13, 2022Updated 3 years ago
- XSS payloads designed to turn alert(1) into P1☆1,395Sep 12, 2023Updated 2 years ago
- TLDs finder — check domain name availability across all valid top-level domains.☆107Oct 20, 2024Updated last year
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆400Mar 6, 2026Updated last month
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆246Oct 20, 2023Updated 2 years ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,600Mar 8, 2026Updated last month
- BBT - Bug Bounty Tools (examples💡)☆1,884Apr 5, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A tool to fastly get all javascript sources/files☆864Jul 4, 2025Updated 9 months ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆871Nov 23, 2022Updated 3 years ago
- A repository that includes all the important wordlists used while bug hunting.☆1,397Mar 11, 2023Updated 3 years ago
- ☆12Feb 18, 2022Updated 4 years ago
- Find related domains of a given domain.☆105Aug 5, 2023Updated 2 years ago
- Jeeves SQLI Finder☆216May 13, 2022Updated 3 years ago
- Nuclei Templates Directory☆57Updated this week