maurosoria / bugbounty-tools

Related projects ⓘ

Alternatives and complementary repositories for bugbounty-tools

• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• pikpikcu / nuubi
  Nuubi Tools (Information-ghatering|Scanner|Recon.)
  ☆86Updated 4 years ago
• KingOfBugbounty / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆36Updated 3 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆150Updated 4 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆44Updated 4 years ago
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆106Updated 4 years ago
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆104Updated 2 weeks ago
• SaadAhmedx / Subdomain-Takeover
  ☆57Updated last year
• pwn0sec / PwnSSRF
  A Python based scanner to find potential SSRF parameters in a web application.
  ☆71Updated 3 years ago
• the-robot / admin-finder
  ☆72Updated 3 years ago
• z3dc0ps / 0x0p1n3r
  0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover
  ☆56Updated 3 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆79Updated 2 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆71Updated 4 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆84Updated 5 months ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆59Updated last year
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆95Updated 3 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• vavkamil / XSSwagger
  A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
  ☆55Updated 5 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆116Updated 3 years ago
• tedmdelacruz / recon-scripts
  A simple reconnaissance framework for bug bounty hunting
  ☆35Updated 4 years ago
• Anon-Exploiter / subdomainsEnumerator
  A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.
  ☆69Updated 4 months ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 4 years ago
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆38Updated 3 years ago
• xElkomy / Workflow-Bug-Bounty
  My Tools For Bug Bounty
  ☆63Updated last month
• harsh-bothra / VPS-Install
  Quick script to install all the required tools over a VPS (tested on DEBIAN)
  ☆77Updated 3 years ago
• shifa123 / clickjackingpoc
  A Proof of Concept for Clickjacking Attacks
  ☆52Updated 3 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆61Updated 4 years ago
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆118Updated 2 years ago