Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Online tips and explain the commands, for the better understanding of new hunters..
☆36Dec 8, 2023Updated 2 years ago
Alternatives and similar repositories for bug-bounty-tips
Users that are interested in bug-bounty-tips are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Generate a cross join, also known as a Cartesian product, from the lines of the specified files. This process is useful for creating fuzz…☆21Jun 29, 2023Updated 2 years ago
- Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.☆14Dec 30, 2023Updated 2 years ago
- Ultimate List Of Bug Bounty Tools☆10Feb 25, 2023Updated 3 years ago
- This script will find some basic vulns. I made this script for my daily hunting. The best feature about this script is just run it in bac…☆20Feb 19, 2024Updated 2 years ago
- Automate Nuclei scans and streamline bug hunting workflows☆21Feb 16, 2024Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- At this repo you can find any tools, tricks or templates for general penetration testing assesment☆15Apr 27, 2024Updated last year
- A curated list of available Bug Bounty & Disclosure Programs and Write-ups.☆78Dec 3, 2023Updated 2 years ago
- Javascript file change monitoring☆17Mar 13, 2026Updated 2 weeks ago
- CRLF Bug scanner for WebPentesters and Bugbounty Hunters☆44Jun 9, 2023Updated 2 years ago
- Gampung tools for find nuclei template from github☆12Sep 6, 2023Updated 2 years ago
- Good resources about web security that I have read.☆27Jul 23, 2023Updated 2 years ago
- 🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.☆54May 14, 2023Updated 2 years ago
- All in one web Recon app☆42Jun 11, 2024Updated last year
- ☆10Jun 19, 2024Updated last year
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- My useful files for penetration tests, security assessments, bug bounty and other security related stuff☆202Updated this week
- Notes taken from Android App Hacking - Black Belt Edition (UDEMY - Roman Stuehler)☆24May 19, 2024Updated last year
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- ☆18Nov 25, 2025Updated 4 months ago
- My bug bounty notes☆35Apr 10, 2021Updated 4 years ago
- URL Fuzzer☆20Nov 22, 2024Updated last year
- Filter URLs that match your scope file for bugbounty.☆11May 23, 2023Updated 2 years ago
- ☆15Jun 26, 2025Updated 9 months ago
- Hey there! Welcome to my collection of bug bounty and security testing resources. Whether you're just starting out or already deep into y…☆12Mar 9, 2026Updated 2 weeks ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Some Tutorials and Things to Help Bug Hunter☆31Mar 17, 2021Updated 5 years ago
- A CDN Domain Fronting Tool or Websocket Discovery written in Python☆55Mar 13, 2023Updated 3 years ago
- This repository contains fully disclosed accepted reports for the null Ahmedabad's Bug Bounty CTF.☆10Oct 31, 2023Updated 2 years ago
- Repository to store all audits from public contests, bug bounty programmes☆11Apr 23, 2024Updated last year
- ☆13Oct 24, 2024Updated last year
- ☆113Apr 25, 2023Updated 2 years ago
- A tool offering templates for streamlined bug bounty reporting☆60Jan 11, 2024Updated 2 years ago
- Recon for Pentesting and BugBounty 🕵️☆14Jan 14, 2026Updated 2 months ago
- Python package dependency confusion vulnerability POC. Impact this vulnerability is Remote code execution (RCE)☆12Apr 29, 2025Updated 11 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- This Is The Ultimate Bug Bounty Automation & Web Hacking Tool That I've Created.☆28Feb 27, 2023Updated 3 years ago
- An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites…☆43Jun 28, 2022Updated 3 years ago
- A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information f…☆117Feb 23, 2026Updated last month
- My Notes & Resources Of Bug Bounty Checklists☆85Dec 28, 2024Updated last year
- ☆28Jul 5, 2023Updated 2 years ago
- Bug Bounty Methodology-slides by Muhammad M. Awali. Pentesting and Researcher Talks.☆31Feb 17, 2023Updated 3 years ago
- My public findings/reports from decentralized audits, select bug bounty programs and engagements☆13Updated this week