A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.
☆237Feb 1, 2022Updated 4 years ago
Alternatives and similar repositories for bug-bounty-standards
Users that are interested in bug-bounty-standards are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆96Jan 2, 2025Updated last year
- Repository to house markdown templates for researchers☆218Apr 1, 2026Updated last month
- 🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addi…☆85Sep 30, 2025Updated 7 months ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Feb 12, 2022Updated 4 years ago
- De-clutter a list of URLs☆390Mar 8, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Find endpoints on GitHub.☆220Mar 28, 2023Updated 3 years ago
- Rockyou for web fuzzing☆3,154Mar 11, 2026Updated 2 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,511Jan 8, 2026Updated 4 months ago
- ☆754Jun 26, 2024Updated last year
- "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.☆1,087Mar 3, 2025Updated last year
- declutters url lists for crawling/pentesting☆1,555Feb 23, 2025Updated last year
- Useful "Match and Replace" burpsuite rules☆370Sep 26, 2023Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆598Aug 4, 2024Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Mar 5, 2021Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Automated & Manual Wordlists provided by Assetnote☆1,676Feb 27, 2026Updated 2 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆1,080Mar 24, 2026Updated last month
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,374May 9, 2026Updated last week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,233Aug 14, 2024Updated last year
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,829May 22, 2024Updated last year
- ☆23Mar 29, 2022Updated 4 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,042Aug 23, 2025Updated 8 months ago
- A reverse whois tool based on Whoxy API.☆170Mar 31, 2024Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Scanner for Cross-Site WebSocket Hijacking☆40Feb 19, 2026Updated 3 months ago
- Awesome Bug bounty builder Project☆677Feb 15, 2023Updated 3 years ago
- Finding XSS during recon☆272Sep 13, 2022Updated 3 years ago
- XSS payloads designed to turn alert(1) into P1☆1,394Sep 12, 2023Updated 2 years ago
- TLDs finder — check domain name availability across all valid top-level domains.☆107Oct 20, 2024Updated last year
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆397Mar 6, 2026Updated 2 months ago
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆247Oct 20, 2023Updated 2 years ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,635Mar 8, 2026Updated 2 months ago
- BBT - Bug Bounty Tools (examples💡)☆1,894Apr 5, 2024Updated 2 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A tool to fastly get all javascript sources/files☆872Jul 4, 2025Updated 10 months ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆872Nov 23, 2022Updated 3 years ago
- A repository that includes all the important wordlists used while bug hunting.☆1,399Mar 11, 2023Updated 3 years ago
- ☆12Feb 18, 2022Updated 4 years ago
- Find related domains of a given domain.☆105May 4, 2026Updated 2 weeks ago
- Jeeves SQLI Finder☆214May 13, 2022Updated 4 years ago
- Nuclei Templates Directory☆58May 6, 2026Updated 2 weeks ago