Alternatives and similar repositories for bugbounty-tools

Users that are interested in bugbounty-tools are comparing it to the libraries listed below

• z3dc0ps / 0x0p1n3r
  0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover
  ☆57Updated 4 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆155Updated 4 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆46Updated 4 years ago
• pikpikcu / nuubi
  Nuubi Tools (Information-ghatering|Scanner|Recon.)
  ☆86Updated 4 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated last year
• KingOfBugbounty / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆35Updated 4 years ago
• cspshivam / easyrecon
  Tool to automate recon
  ☆43Updated 3 years ago
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆112Updated 6 months ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆89Updated 11 months ago
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆110Updated 4 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 4 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆81Updated 3 years ago
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆51Updated 5 years ago
• rishuranjanofficial / JWTweak
  Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
  ☆99Updated last year
• SaadAhmedx / Subdomain-Takeover
  ☆59Updated 2 years ago
• tedmdelacruz / recon-scripts
  A simple reconnaissance framework for bug bounty hunting
  ☆35Updated 4 years ago
• BitTheByte / Eagle
  Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
  ☆121Updated last year
• vavkamil / XFFenum
  X-Forwarded-For [403 forbidden] enumeration
  ☆93Updated last year
• gwen001 / bugbountytips
  Webapp to search tips on Twitter through #bugbountytips
  ☆72Updated 2 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆54Updated 4 years ago
• shifa123 / clickjackingpoc
  A Proof of Concept for Clickjacking Attacks
  ☆55Updated 4 years ago
• Anon-Exploiter / subdomainsEnumerator
  A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.
  ☆71Updated 9 months ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆111Updated 3 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆125Updated 4 years ago
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆78Updated 5 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆99Updated 3 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• pwn0sec / PwnSSRF
  A Python based scanner to find potential SSRF parameters in a web application.
  ☆72Updated 3 years ago
• darklotuskdb / sd-goo
  Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)
  ☆124Updated last month