Alternatives and similar repositories for bug-bounty-labs

Users that are interested in bug-bounty-labs are comparing it to the libraries listed below

• xnl-h4ck3r / knoxnl
  This is a python wrapper around the amazing KNOXSS API by Brute Logic
  ☆279Updated last month
• x1337loser / Dependency-Confusion
  All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)
  ☆300Updated last year
• w9w / JSA
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆560Updated 11 months ago
• ayadim / Nuclei-bug-hunter
  i will upload more templates here to share with the comunity.
  ☆568Updated last year
• Net-hunter121 / API-Wordlist
  ☆249Updated 4 years ago
• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆393Updated 5 years ago
• SirBugs / Priv8-Nuclei-Templates
  My Priv8 Nuclei Templates
  ☆336Updated last year
• Cyber-Guy1 / Subdomainer
  Automated tool for domains & subdomains gathering
  ☆191Updated 2 weeks ago
• orwagodfather / My-WordLISTs
  ☆148Updated 4 years ago
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆362Updated 2 years ago
• 0xDexter0us / Scavenger
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆255Updated 4 years ago
• ferreiraklet / airixss
  Finding XSS during recon
  ☆271Updated 3 years ago
• gprime31 / WAF-bypass-xss-payloads
  XSS payloads for bypassing WAF. This repository is updating continuously.
  ☆264Updated last year
• InsiderPhD / hackerone-reports
  Top disclosed reports from HackerOne
  ☆161Updated 4 years ago
• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382Updated 2 years ago
• netsecurity-as / subfuz
  A subdomain fuzzing tool
  ☆172Updated last year
• R-s0n / bug-bounty-village-defcon32-workshop
  The repo contains all the the notes, slides, and study material for my workshop at DEFCON 32 at the Bug Bounty Village
  ☆198Updated last year
• shreyaschavhan / 10000-h1-disclosed-reports
  10,000 H1 Disclosed Reports
  ☆118Updated last year
• Emoe / kxss
  This a adaption of tomnomnom's kxss tool with a different output format
  ☆516Updated 2 years ago
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆373Updated 2 years ago
• osamahamad / FUZZING
  Collected fuzzing payloads from different resources
  ☆126Updated 3 weeks ago
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆361Updated 3 years ago
• takshal / freq
  This is go CLI tool for send fast Multiple get HTTP request.
  ☆283Updated 3 years ago
• bnematzadeh / LoggerPlusPlus-API-Filters
  A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles
  ☆234Updated last year
• rs-loves-bugs / xsshunter
  ☆179Updated 5 months ago
• bing0o / SubEnum
  bash script for Subdomain Enumeration
  ☆398Updated 6 months ago
• SeifElsallamy / Blind-XSS-Manager
  Never forget where you inject.
  ☆298Updated 5 months ago
• xnl-h4ck3r / urless
  De-clutter a list of URLs
  ☆383Updated last week
• Proviesec / xss-payload-list
  xss-payload-list
  ☆127Updated last year
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆286Updated last year