Alternatives and similar repositories for bug-bounty-labs

Users that are interested in bug-bounty-labs are comparing it to the libraries listed below

• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆363Updated 4 years ago
• xnl-h4ck3r / knoxnl
  This is a python wrapper around the amazing KNOXSS API by Brute Logic
  ☆263Updated this week
• Cyber-Guy1 / Subdomainer
  Automated tool for domains & subdomains gathering
  ☆186Updated last year
• Net-hunter121 / API-Wordlist
  ☆240Updated 3 years ago
• SirBugs / Priv8-Nuclei-Templates
  My Priv8 Nuclei Templates
  ☆316Updated last year
• orwagodfather / My-WordLISTs
  ☆134Updated 3 years ago
• ayadim / Nuclei-bug-hunter
  i will upload more templates here to share with the comunity.
  ☆543Updated last year
• 0xDexter0us / Scavenger
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆238Updated 3 years ago
• InsiderPhD / hackerone-reports
  Top disclosed reports from HackerOne
  ☆151Updated 4 years ago
• AkashHamal0x01 / learn250
  ☆97Updated 3 years ago
• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382Updated last year
• pdelteil / BugBountyReportTemplates
  List of reporting templates I have used since I started doing BBH.
  ☆298Updated 7 months ago
• emadshanab / Gf-Patterns-Collection
  ☆154Updated 2 years ago
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆346Updated last year
• ferreiraklet / airixss
  Finding XSS during recon
  ☆258Updated 2 years ago
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆349Updated 3 years ago
• x1337loser / Dependency-Confusion
  All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)
  ☆286Updated last year
• lucsemassa / burp_bug_finder
  Automatic Bug finder with buprsuite
  ☆166Updated 2 years ago
• rs-loves-bugs / xsshunter
  ☆171Updated 3 months ago
• gprime31 / WAF-bypass-xss-payloads
  XSS payloads for bypassing WAF. This repository is updating continuously.
  ☆239Updated last year
• CharanRayudu / Custom-Nuclei-Templates
  ☆126Updated 3 years ago
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆360Updated last year
• aacle / xss_payload
  ☆298Updated 2 years ago
• shreyaschavhan / 10000-h1-disclosed-reports
  10,000 H1 Disclosed Reports
  ☆109Updated last year
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆216Updated 8 months ago
• subhash0x / BugBounty-reports-templates
  My small collection of reports templates
  ☆78Updated 5 years ago
• SirBugs / endext
  EndExt is a .go tool for extracting all the possible endpoints from the JS files
  ☆202Updated 10 months ago
• Emoe / kxss
  This a adaption of tomnomnom's kxss tool with a different output format
  ☆466Updated last year
• R-s0n / bug-bounty-village-defcon32-workshop
  The repo contains all the the notes, slides, and study material for my workshop at DEFCON 32 at the Bug Bounty Village
  ☆138Updated 9 months ago
• w9w / JSA
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆504Updated 2 months ago