A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆236Feb 1, 2022Updated 4 years ago
Alternatives and similar repositories for bug-bounty-standards
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Jan 2, 2025Updated last year
- Repository to house markdown templates for researchers☆217Oct 16, 2025Updated 5 months ago
- 🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addi…☆85Sep 30, 2025Updated 5 months ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Feb 12, 2022Updated 4 years ago
- De-clutter a list of URLs☆385Mar 8, 2026Updated 2 weeks ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Find endpoints on GitHub.☆215Mar 28, 2023Updated 2 years ago
- Rockyou for web fuzzing☆3,094Mar 11, 2026Updated 2 weeks ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,503Jan 8, 2026Updated 2 months ago
- ☆755Jun 26, 2024Updated last year
- "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.☆1,084Mar 3, 2025Updated last year
- declutters url lists for crawling/pentesting☆1,538Feb 23, 2025Updated last year
- Useful "Match and Replace" burpsuite rules☆365Sep 26, 2023Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆597Aug 4, 2024Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Mar 5, 2021Updated 5 years ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- Automated & Manual Wordlists provided by Assetnote☆1,650Feb 27, 2026Updated last month
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆987Jan 12, 2024Updated 2 years ago
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,337Mar 5, 2026Updated 3 weeks ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,785May 22, 2024Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,113Aug 14, 2024Updated last year
- ☆23Mar 29, 2022Updated 3 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,040Aug 23, 2025Updated 7 months ago
- A reverse whois tool based on Whoxy API.☆170Mar 31, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Scanner for Cross-Site WebSocket Hijacking☆41Feb 19, 2026Updated last month
- Awesome Bug bounty builder Project☆675Feb 15, 2023Updated 3 years ago
- Finding XSS during recon☆272Sep 13, 2022Updated 3 years ago
- XSS payloads designed to turn alert(1) into P1☆1,394Sep 12, 2023Updated 2 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆398Mar 6, 2026Updated 3 weeks ago
- TLDs finder — check domain name availability across all valid top-level domains.☆107Oct 20, 2024Updated last year
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,574Mar 8, 2026Updated 2 weeks ago
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆245Oct 20, 2023Updated 2 years ago
- BBT - Bug Bounty Tools (examples💡)☆1,885Apr 5, 2024Updated last year
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A tool to fastly get all javascript sources/files☆860Jul 4, 2025Updated 8 months ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆867Nov 23, 2022Updated 3 years ago
- A repository that includes all the important wordlists used while bug hunting.☆1,386Mar 11, 2023Updated 3 years ago
- ☆12Feb 18, 2022Updated 4 years ago
- Find related domains of a given domain.☆104Aug 5, 2023Updated 2 years ago
- Jeeves SQLI Finder☆216May 13, 2022Updated 3 years ago
- Nuclei Templates Directory☆57Mar 17, 2026Updated last week