Alternatives and similar repositories for bugbounty-dorks

Users that are interested in bugbounty-dorks are comparing it to the libraries listed below

• xnl-h4ck3r / ScriptView-Burp-Extension
  A Burp Extension that makes it easier to view all script code on a Response.
  ☆16Updated last year
• ifconfig-me / JSSecret-Extractor
  This python based tool can be used to discover API keys, access tokens, and other sensitive data in JavaScript files. It can scan JavaScr…
  ☆11Updated 9 months ago
• SirBugs / subguess
  Generating Sub-Sub-Subdomain + validating all of them
  ☆10Updated 2 years ago
• rix4uni / xsschecker
  xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.
  ☆21Updated 8 months ago
• 0xPugal / bugbounty_profile
  Automate bug bounty recon using bash alias
  ☆14Updated 11 months ago
• theVulnerableMMII / oSkan
  This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurity
  ☆23Updated 3 years ago
• gwen001 / bxss
  Alternative to XSS Hunter for blind XSS.
  ☆51Updated 2 years ago
• Sybil-Scan / TLDbrute
  A simple utility to generate domain names with all possible TLDs
  ☆23Updated 2 years ago
• SirBugs / JsValidator
  JsValidator is a tool created for validating the JS files after crawlling it from waybackurls
  ☆20Updated 2 years ago
• bsysop / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆17Updated 4 years ago
• whalebone7 / FfufMaster
  Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.
  ☆24Updated 2 years ago
• YouGina / wordlistweaver
  Quick tool to create custom wordlists like how fuzzers work
  ☆10Updated last year
• faiyazahmad07 / SSTI_DETECTOR
  This tool allows you to find ssti vulnerability with ease!
  ☆20Updated 2 years ago
• aliyugombe / reflector
  ☆15Updated 2 years ago
• HernanRodriguez1 / ScanMySQLiErrorBased-Nuclei
  ☆21Updated 2 years ago
• Spix0r / cloudrecon
  This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…
  ☆45Updated 7 months ago
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated 2 years ago
• ferreiraklet / Airi
  Hidden input parameters finder
  ☆18Updated 2 years ago
• Virdoexhunter / Subenum_deep_subdomain_enumeration
  In this repo, I have created a subdomain enumeration function that grab subdomains in deep.
  ☆22Updated 2 years ago
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• Ibrahim-sec / JSNotify
  JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…
  ☆18Updated last year
• Az0x7 / payloadforall
  ☆25Updated 2 years ago
• Cappricio-Securities / ghostrecon
  gh0str3con is a All in one cloud based web Recon tool.
  ☆22Updated last year
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆56Updated last year
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆35Updated last year
• SirBugs / Offy
  offy is a tool for bugbounty hunters to save money in their EC2 instances
  ☆13Updated 2 years ago
• 0xAgun / All1
  Automated Recon Tool Installer
  ☆16Updated 3 years ago
• ifconfig-me / CVE-2024-4956-Bulk-Scanner
  [CVE-2024-4956] Nexus Repository Manager 3 Unauthenticated Path Traversal Bulk Scanner
  ☆15Updated 9 months ago
• LeDoubleTake / nuclei-templates
  List of custom Nuclei templates
  ☆15Updated last year
• iambouali / p1radup
  Process URLs and remove duplicate query parameters.
  ☆28Updated last year