A collection of awesome one-liner scripts especially for bug bounty tips.
☆10Jun 27, 2021Updated 4 years ago
Alternatives and similar repositories for awesome-oneliner-bugbounty
Users that are interested in awesome-oneliner-bugbounty are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- GoWC - Wildcard cleaner for MassDNS☆24Jun 10, 2022Updated 3 years ago
- Java Basic Codes for Beginner to Advance, Here you will get Java Programming codes with examples by GitCodeSwetabh☆11Oct 2, 2020Updated 5 years ago
- Learn what is NoSQL injection and how to find them ?☆10Jul 22, 2021Updated 4 years ago
- Google dorks for bug bounty hunting☆12Jul 28, 2021Updated 4 years ago
- Dnslog Interactsh的Py版接口查询☆13Dec 10, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Signatures for wraith used to detect secrets across various sources☆15Jul 8, 2022Updated 3 years ago
- A collection of payloads for different vulnerabilities, best payload lists in one repository☆17Jul 28, 2021Updated 4 years ago
- HTB Jail Remote Exploit By Cneeliz - 2017☆15Jan 9, 2018Updated 8 years ago
- ☆15Jan 8, 2020Updated 6 years ago
- Simple script to test for clickjacking☆23Jun 21, 2021Updated 4 years ago
- 🔰 Caido Plugin StarterKit☆34Dec 7, 2024Updated last year
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆12Aug 30, 2022Updated 3 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆13Mar 15, 2023Updated 3 years ago
- ☆11Nov 12, 2019Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Funny Fuzzing Wordlist☆14Jun 14, 2022Updated 3 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆46Jun 3, 2024Updated last year
- Multithreaded Host Header Redirection Scanner☆14Nov 10, 2020Updated 5 years ago
- ☆12Oct 31, 2022Updated 3 years ago
- A Collection of Proof of Concepts for non-published Web Exploits and Common CVEs☆10Nov 29, 2020Updated 5 years ago
- port+dir+param bruteforcing at the same time using ffuf☆17Jul 27, 2024Updated last year
- This repository include Docker Machines for practicing on some of the Web Attacks.☆14Nov 20, 2023Updated 2 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66May 28, 2022Updated 3 years ago
- Hand-made Improved Nuclei Templates!🪴☆13Jun 12, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆19Apr 28, 2025Updated last year
- 一个集和多线程 批量验证 poc验证 存活测试 备份文件探测 后台探测 渗透测试框架。☆18May 8, 2022Updated 4 years ago
- A program for collecting subdomains of a list of given second-level domains (SLD)☆15Feb 10, 2026Updated 2 months ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Mar 10, 2023Updated 3 years ago
- Extract most frequent words in a list of subdomains☆13Feb 15, 2025Updated last year
- ☆14Feb 7, 2024Updated 2 years ago
- Grab form parameters easily☆14Dec 11, 2024Updated last year
- Cent Nuclei Templates generated through the cent tool. Maintained by HackerWhite.☆12Aug 20, 2023Updated 2 years ago
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints☆12Jun 15, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Brute Force subdomains with a list of custom DNS records.☆13Feb 24, 2023Updated 3 years ago
- Passive JavaScript reconnaissance for penetration testers — bridging Burp Suite traffic into structured, AST-based analysis in VSCode.☆36Feb 5, 2026Updated 3 months ago
- Caido plugin for jxscout☆15Nov 22, 2025Updated 5 months ago
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,832Jun 9, 2024Updated last year
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆60May 10, 2022Updated 3 years ago
- ☆18Jun 18, 2021Updated 4 years ago
- Collection of rules for Static Application Security Testing (SAST) with Semgrep☆12Apr 16, 2025Updated last year