this repo contains some public methodologies which I found from internet (google,telegram,discord,writeups etc..)
☆30May 30, 2024Updated last year
Alternatives and similar repositories for Bug-Hunting-methodologies
Users that are interested in Bug-Hunting-methodologies are comparing it to the libraries listed below
Sorting:
- ☆15Mar 21, 2025Updated last year
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆30Oct 29, 2024Updated last year
- An automated bug hunting tool for comprehensive reconnaissance, including subdomain enumeration, port scanning, vulnerability detection, …☆13Jun 24, 2025Updated 8 months ago
- A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.☆47Dec 19, 2025Updated 3 months ago
- n8n workflows related to bug bounty☆47Oct 27, 2025Updated 4 months ago
- Filter URLs that match your scope file for bugbounty.☆11May 23, 2023Updated 2 years ago
- ☆14Jun 26, 2025Updated 8 months ago
- A comprehensive bug bounty methodology compiled from extensive research, covering web application reconnaissance, checklists, and methods…☆126Nov 11, 2024Updated last year
- ☆13Oct 24, 2024Updated last year
- It's the collection of all common Question and answers that can possibly come in your exam, if you just complete these question's you wil…☆13Mar 26, 2023Updated 2 years ago
- A powerful tool designed for identifying hidden endpoints and sensitive information within JavaScript files on a website.☆30Oct 19, 2023Updated 2 years ago
- ☆29Feb 4, 2026Updated last month
- Javascript file change monitoring☆17Mar 13, 2026Updated last week
- Auto Recon tool for finding SQLi,XSS,LFi,OpenRedirect☆56Mar 4, 2025Updated last year
- A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…☆27Nov 21, 2024Updated last year
- Fast path fuzzing for hidden web directories.☆18Aug 6, 2025Updated 7 months ago
- A CLI tool to extract, analyze, and filter JavaScript links from web pages or URLs, with regex matching and structured JSON output.☆19Jan 6, 2025Updated last year
- Gitbook: OSCP-Jewels☆12Oct 19, 2021Updated 4 years ago
- CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.☆48May 26, 2025Updated 9 months ago
- A extension for collecting parameters☆25Oct 25, 2020Updated 5 years ago
- Sec-Payloads, It's a collection of multiple types of lists used during security assessments & used for bug bounty hunting or penetration …☆10Nov 17, 2025Updated 4 months ago
- Cool resources and content for bug bounty hunting.☆19Oct 1, 2021Updated 4 years ago
- [Forked] This repo is for learning various heap exploitation techniques.☆10Sep 6, 2018Updated 7 years ago
- XSSInspector can defeat any WAF in the world with its AI and 96 filter set. This open-source solution simplifies XSS vulnerability identi…☆12Sep 8, 2025Updated 6 months ago
- Oty is a fast, customizable, CLI tool designed to streamline your Bug Bounty and Pentesting workflows. Powered by a simple yet flexible Y…☆28Jan 27, 2025Updated last year
- **A powerful, offline, single-file HTML tool designed for developers and security researchers to inspect and analyze JavaScript Source Ma…☆92Oct 24, 2025Updated 4 months ago
- Stuff for bug bounty☆35Feb 1, 2023Updated 3 years ago
- Automate bug bounty recon using bash alias☆15Aug 6, 2024Updated last year
- Bug Bounty Web and API Payloads☆39Feb 5, 2026Updated last month
- Detection Engineering Tools☆25Mar 13, 2026Updated last week
- JSBerg is a fast and efficient URL scraper that extracts links, JavaScript files, CSS files, images, and inline URLs from a list of websi…☆23Mar 19, 2025Updated last year
- XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible lin…☆15Nov 25, 2019Updated 6 years ago
- Bug Bounty Tools used on Twitch - Recon☆324Sep 6, 2024Updated last year
- Network Defense Essentials notes☆24Feb 3, 2022Updated 4 years ago
- CLI tool for fetching URLs from Wayback Machine, Common Crawl, and VirusTotal.☆40Aug 21, 2025Updated 7 months ago
- A powerful JavaScript monitoring tool for bug bounty hunters. Track changes in JavaScript files across websites, detect new attack surfac…☆88Apr 19, 2025Updated 11 months ago
- XSS scanner tool to scan a list of URLs provided in a .txt file for reflected XSS(rxss) vulnerabilities. This tool is designed to efficie…☆14Jun 29, 2024Updated last year
- A simple reconnaissance framework for bug bounty hunting☆37Oct 16, 2020Updated 5 years ago
- Dutch Government Bugbounty scope, subdomains and endpoints☆31Updated this week