mrvcoder/Bug-Hunting-methodologies external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mrvcoder/Bug-Hunting-methodologies

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mrvcoder/Bug-Hunting-methodologies)

Close

mrvcoder / Bug-Hunting-methodologiesView on GitHubMore

• External links
• Readme badge

this repo contains some public methodologies which I found from internet (google,telegram,discord,writeups etc..)

☆30May 30, 2024Updated last year

Alternatives and similar repositories for Bug-Hunting-methodologies

Users that are interested in Bug-Hunting-methodologies are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• xitmakes / scope.sh

  View on GitHub
  ☆15Mar 21, 2025Updated last year
• husseinphp / Hide-Search-Result

  View on GitHub
  ☆14Nov 8, 2024Updated last year
• hackersthan / anveshan

  View on GitHub
  anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…
  ☆30Oct 29, 2024Updated last year
• IamLucif3r / Bug-Hunting

  View on GitHub
  A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.
  ☆165Jul 14, 2021Updated 4 years ago
• offsecrunner / BugRecon

  View on GitHub
  An automated bug hunting tool for comprehensive reconnaissance, including subdomain enumeration, port scanning, vulnerability detection, …
  ☆13Jun 24, 2025Updated 9 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• rix4uni / subdog

  View on GitHub
  A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.
  ☆47Dec 19, 2025Updated 3 months ago
• ethicxlhuman / n8n-for-bug-bounty

  View on GitHub
  n8n workflows related to bug bounty
  ☆48Oct 27, 2025Updated 5 months ago
• prodigiousMind / CVE-2023-41425

  View on GitHub
  WonderCMS Authenticated RCE - CVE-2023-41425
  ☆26Dec 30, 2024Updated last year
• xplo1t-sec / scopy

  View on GitHub
  Filter URLs that match your scope file for bugbounty.
  ☆11May 23, 2023Updated 2 years ago
• ibrahimhaxor / Tsangaya

  View on GitHub
  ☆15Jun 26, 2025Updated 9 months ago
• alihussainzada / BugHunterMethodology

  View on GitHub
  A comprehensive bug bounty methodology compiled from extensive research, covering web application reconnaissance, checklists, and methods…
  ☆129Nov 11, 2024Updated last year
• vaishalinagori / AutoCrypt-Burp-Extension

  View on GitHub
  ☆13Oct 24, 2024Updated last year
• nikolas-trey / JSRecon

  View on GitHub
  A powerful tool designed for identifying hidden endpoints and sensitive information within JavaScript files on a website.
  ☆30Mar 31, 2026Updated last week
• jsmonhq / jsmon-cli

  View on GitHub
  ☆29Feb 4, 2026Updated 2 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• 0xdead4f / jswatch

  View on GitHub
  Javascript file change monitoring
  ☆17Mar 13, 2026Updated 3 weeks ago
• michenriksen / tmpl

  View on GitHub
  Simple tmux session management.
  ☆16Dec 16, 2023Updated 2 years ago
• j4k0m / MultiTapBurp

  View on GitHub
  A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…
  ☆27Nov 21, 2024Updated last year
• profmoriarity / everythingjs

  View on GitHub
  A CLI tool to extract, analyze, and filter JavaScript links from web pages or URLs, with regex matching and structured JSON output.
  ☆19Jan 6, 2025Updated last year
• JuaanReis / vorin

  View on GitHub
  Fast path fuzzing for hidden web directories.
  ☆18Aug 6, 2025Updated 8 months ago
• parrot409 / Parmy

  View on GitHub
  A extension for collecting parameters
  ☆25Oct 25, 2020Updated 5 years ago
• alwalxed / juicyurls

  View on GitHub
  CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
  ☆49May 26, 2025Updated 10 months ago
• jephk9 / oscp-jewels

  View on GitHub
  Gitbook: OSCP-Jewels
  ☆12Oct 19, 2021Updated 4 years ago
• E-HAX / EHAX-CTF-2025

  View on GitHub
  ☆14Feb 25, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• anishkashukla / learn-100

  View on GitHub
  Cool resources and content for bug bounty hunting.
  ☆19Oct 1, 2021Updated 4 years ago
• sunghun7511 / how2heap-study

  View on GitHub
  [Forked] This repo is for learning various heap exploitation techniques.
  ☆10Sep 6, 2018Updated 7 years ago
• trilokdhaked / Bug-Bounty-Methodology

  View on GitHub
  ☆234Jan 20, 2026Updated 2 months ago
• 1hehaq / oty

  View on GitHub
  Oty is a fast, customizable, CLI tool designed to streamline your Bug Bounty and Pentesting workflows. Powered by a simple yet flexible Y…
  ☆28Jan 27, 2025Updated last year
• ynsmroztas / JSMap-Inspector

  View on GitHub
  **A powerful, offline, single-file HTML tool designed for developers and security researchers to inspect and analyze JavaScript Source Ma…
  ☆97Oct 24, 2025Updated 5 months ago
• felipecaon / BugBountyStuff

  View on GitHub
  Stuff for bug bounty
  ☆35Feb 1, 2023Updated 3 years ago
• 0xPugal / bugbounty_profile

  View on GitHub
  Automate bug bounty recon using bash alias
  ☆15Aug 6, 2024Updated last year
• Fr4nzisko / Bug_Bounty_Web_and_API_Tools

  View on GitHub
  Bug Bounty Web and API Payloads
  ☆39Feb 5, 2026Updated 2 months ago
• amohanta / Detection_Engineering_Tools

  View on GitHub
  Detection Engineering Tools
  ☆25Updated this week
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• xitmakes / jsberg

  View on GitHub
  JSBerg is a fast and efficient URL scraper that extracts links, JavaScript files, CSS files, images, and inline URLs from a list of websi…
  ☆23Mar 19, 2025Updated last year
• blackhatethicalhacking / Bug_Bounty_Tools_and_Methodology

  View on GitHub
  Bug Bounty Tools used on Twitch - Recon
  ☆322Sep 6, 2024Updated last year
• sepulvedazallalinux / XSS-Freak

  View on GitHub
  XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible lin…
  ☆15Nov 25, 2019Updated 6 years ago
• alwalxed / wayurls

  View on GitHub
  CLI tool for fetching URLs from Wayback Machine, Common Crawl, and VirusTotal.
  ☆40Aug 21, 2025Updated 7 months ago
• mirzaaghazadeh / jsdif

  View on GitHub
  A powerful JavaScript monitoring tool for bug bounty hunters. Track changes in JavaScript files across websites, detect new attack surfac…
  ☆88Apr 19, 2025Updated 11 months ago
• ManShum812 / ReflectedXSS-Finder

  View on GitHub
  XSS scanner tool to scan a list of URLs provided in a .txt file for reflected XSS(rxss) vulnerabilities. This tool is designed to efficie…
  ☆14Jun 29, 2024Updated last year
• tedmdelacruz / recon-scripts

  View on GitHub
  A simple reconnaissance framework for bug bounty hunting
  ☆37Oct 16, 2020Updated 5 years ago