A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆237Feb 1, 2022Updated 4 years ago
Alternatives and similar repositories for bug-bounty-standards
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Jan 2, 2025Updated last year
- Repository to house markdown templates for researchers☆223Apr 1, 2026Updated 2 months ago
- 🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addi…☆85Sep 30, 2025Updated 8 months ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆35Feb 12, 2022Updated 4 years ago
- De-clutter a list of URLs☆391Mar 8, 2026Updated 3 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Find endpoints on GitHub.☆219Mar 28, 2023Updated 3 years ago
- Rockyou for web fuzzing☆3,165Mar 11, 2026Updated 2 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,518Jan 8, 2026Updated 5 months ago
- ☆753Jun 26, 2024Updated last year
- "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.☆1,090Mar 3, 2025Updated last year
- Automated & Manual Wordlists provided by Assetnote☆1,681Feb 27, 2026Updated 3 months ago
- declutters url lists for crawling/pentesting☆1,558Feb 23, 2025Updated last year
- Useful "Match and Replace" burpsuite rules☆373Sep 26, 2023Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆600Aug 4, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆166Mar 5, 2021Updated 5 years ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆1,083Mar 24, 2026Updated 2 months ago
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,255Aug 14, 2024Updated last year
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,379May 9, 2026Updated last month
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,836May 22, 2024Updated 2 years ago
- ☆23Mar 29, 2022Updated 4 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,042Aug 23, 2025Updated 9 months ago
- A reverse whois tool based on Whoxy API.☆171Mar 31, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Scanner for Cross-Site WebSocket Hijacking☆40Feb 19, 2026Updated 3 months ago
- Awesome Bug bounty builder Project☆675Feb 15, 2023Updated 3 years ago
- Finding XSS during recon☆269Sep 13, 2022Updated 3 years ago
- XSS payloads designed to turn alert(1) into P1☆1,397Sep 12, 2023Updated 2 years ago
- TLDs finder — check domain name availability across all valid top-level domains.☆108Oct 20, 2024Updated last year
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆398May 28, 2026Updated last week
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆247Oct 20, 2023Updated 2 years ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,660Mar 8, 2026Updated 3 months ago
- BBT - Bug Bounty Tools (examples💡)☆1,896Apr 5, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A tool to fastly get all javascript sources/files☆881Jul 4, 2025Updated 11 months ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆874Nov 23, 2022Updated 3 years ago
- A repository that includes all the important wordlists used while bug hunting.☆1,409Mar 11, 2023Updated 3 years ago
- ☆12Feb 18, 2022Updated 4 years ago
- Find related domains of a given domain.☆105Updated this week
- Jeeves SQLI Finder☆215May 13, 2022Updated 4 years ago
- Nuclei Templates Directory☆58May 29, 2026Updated last week