Alternatives and similar repositories for Bugbounty

Users that are interested in Bugbounty are comparing it to the libraries listed below

• xcapri / dProgBb
  Detect Program Bug Bounty
  ☆42Updated 7 months ago
• daffainfo / vulnerable-web
  Simple vulnerability labs that created using PHP and MySQL.
  ☆16Updated 3 years ago
• lucsemassa / payload_launcher
  ☆41Updated 2 years ago
• un9nplayer / AutoRecon-XSS
  AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…
  ☆133Updated last year
• thecyberneh / BSides-Ahmedabad-2024-Conference-Slides
  A collection of slides and presentations from BSides Ahmedabad 2024, held on October 12th and 13th. This repository features key insights…
  ☆38Updated last year
• pikpikcu / hostinject
  hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a ta…
  ☆28Updated 2 years ago
• rdzsp / linkfinder-by-rdzsp
  Linkfinder by Rdzsp is a browser extension that automatically scans and collects endpoints from JavaScript files on websites
  ☆31Updated last year
• freelancermijan / urlfuzzer
  URL Fuzzer
  ☆20Updated last year
• rix4uni / xsschecker
  xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…
  ☆36Updated 2 months ago
• dirtycoder0124 / form_finder
  This script can be used to find html forms in the list of endpoints/urls.
  ☆50Updated last year
• xss0r / xssorRecon
  Automate Recon XSS Bug Bounty
  ☆178Updated last week
• H4cker-Nafeed / Nafeed-Broken-Link
  Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…
  ☆66Updated last year
• orwagodfather / SQL-Wordlist
  ☆84Updated last year
• xalgord / My-Methodologies
  Tools and methods that I personally use for Recon and Exploitations
  ☆45Updated 9 months ago
• haxshadow / secret_detector
  ☆17Updated 9 months ago
• dragonked2 / Dons
  Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript…
  ☆87Updated 3 weeks ago
• Elsfa7-110 / Elsfa7110-Oneliner-bughunting
  ☆69Updated last year
• Az0x7 / recon-resource
  ☆111Updated 2 years ago
• roomkangali / dursgo
  DursGo - The Go-Powered Web Application Scanner - With AI-Powered Analysis
  ☆60Updated last month
• xcapri / subdosec
  Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdoma…
  ☆55Updated last week
• schooldropout1337 / dork
  ☆65Updated 2 years ago
• thd3r / godork
  Advanced & Fast Google Dorking Tool
  ☆23Updated 9 months ago
• schooldropout1337 / nuclei-templates
  ☆184Updated last year
• Atharv834 / S3BucketMisconf
  ☆44Updated 6 months ago
• AnonKryptiQuz / TimeVault
  TimeVault is a specialized automated tool designed to detect potential information disclosure vulnerabilities in web applications by leve…
  ☆41Updated last year
• rootDR / ex-param
  ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…
  ☆63Updated 11 months ago
• RevoltSecurities / SpideyX
  SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.
  ☆189Updated 10 months ago
• jaikishantulswani / bb-reports-templates
  My small collection of reports templates (This is a fork of orignal repo from https://github.com/gwen001/BB-datas)
  ☆127Updated 2 years ago
• TheHermione / DorkFinder
  Automatic tool to find Google Dorks
  ☆36Updated last year
• AnonKryptiQuz / NextSploit
  NextSploit is a command-line tool designed to detect and exploit CVE-2025-29927, a security flaw in Next.js
  ☆81Updated 9 months ago