this repo contains some public methodologies which I found from internet (google,telegram,discord,writeups etc..)
☆31May 30, 2024Updated last year
Alternatives and similar repositories for Bug-Hunting-methodologies
Users that are interested in Bug-Hunting-methodologies are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆15Mar 21, 2025Updated last year
- ☆14Nov 8, 2024Updated last year
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆30Oct 29, 2024Updated last year
- A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.☆166Jul 14, 2021Updated 4 years ago
- A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.☆48Dec 19, 2025Updated 4 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- An automated bug hunting tool for comprehensive reconnaissance, including subdomain enumeration, port scanning, vulnerability detection, …☆15Jun 24, 2025Updated 10 months ago
- WonderCMS Authenticated RCE - CVE-2023-41425☆27Dec 30, 2024Updated last year
- Filter URLs that match your scope file for bugbounty.☆11May 23, 2023Updated 2 years ago
- ☆16Jun 26, 2025Updated 10 months ago
- A comprehensive bug bounty methodology compiled from extensive research, covering web application reconnaissance, checklists, and methods…☆132Nov 11, 2024Updated last year
- ☆13Oct 24, 2024Updated last year
- It's the collection of all common Question and answers that can possibly come in your exam, if you just complete these question's you wil…☆13Mar 26, 2023Updated 3 years ago
- A powerful tool designed for identifying hidden endpoints and sensitive information within JavaScript files on a website.☆30Mar 31, 2026Updated last month
- Javascript file change monitoring☆18Mar 13, 2026Updated last month
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Simple tmux session management.☆16Dec 16, 2023Updated 2 years ago
- Auto Recon tool for finding SQLi,XSS,LFi,OpenRedirect☆57Mar 4, 2025Updated last year
- A CLI tool to extract, analyze, and filter JavaScript links from web pages or URLs, with regex matching and structured JSON output.☆19Jan 6, 2025Updated last year
- Fast path fuzzing for hidden web directories.☆18Aug 6, 2025Updated 8 months ago
- ☆31Apr 23, 2026Updated last week
- A extension for collecting parameters☆25Oct 25, 2020Updated 5 years ago
- Sec-Payloads, It's a collection of multiple types of lists used during security assessments & used for bug bounty hunting or penetration …☆10Nov 17, 2025Updated 5 months ago
- CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.☆49May 26, 2025Updated 11 months ago
- Gitbook: OSCP-Jewels☆12Oct 19, 2021Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Cool resources and content for bug bounty hunting.☆19Oct 1, 2021Updated 4 years ago
- A small utility and interface for renaming files using the Unicode Right-To-Left Override attack☆10Feb 16, 2016Updated 10 years ago
- [Forked] This repo is for learning various heap exploitation techniques.☆10Sep 6, 2018Updated 7 years ago
- ☆236Jan 20, 2026Updated 3 months ago
- Oty is a fast, customizable, CLI tool designed to streamline your Bug Bounty and Pentesting workflows. Powered by a simple yet flexible Y…☆28Jan 27, 2025Updated last year
- Stuff for bug bounty☆35Feb 1, 2023Updated 3 years ago
- **A powerful, offline, single-file HTML tool designed for developers and security researchers to inspect and analyze JavaScript Source Ma…☆98Oct 24, 2025Updated 6 months ago
- Automate bug bounty recon using bash alias☆15Aug 6, 2024Updated last year
- Bug Bounty Web and API Payloads☆39Feb 5, 2026Updated 2 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- JSBerg is a fast and efficient URL scraper that extracts links, JavaScript files, CSS files, images, and inline URLs from a list of websi…☆24Mar 19, 2025Updated last year
- Bug Bounty Tools used on Twitch - Recon☆322Sep 6, 2024Updated last year
- XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible lin…☆15Nov 25, 2019Updated 6 years ago
- CLI tool for fetching URLs from Wayback Machine, Common Crawl, and VirusTotal.☆40Aug 21, 2025Updated 8 months ago
- A powerful JavaScript monitoring tool for bug bounty hunters. Track changes in JavaScript files across websites, detect new attack surfac…☆87Apr 19, 2025Updated last year
- A simple reconnaissance framework for bug bounty hunting☆37Oct 16, 2020Updated 5 years ago
- XSS scanner tool to scan a list of URLs provided in a .txt file for reflected XSS(rxss) vulnerabilities. This tool is designed to efficie…☆14Jun 29, 2024Updated last year