sokaRepo / bugbounty
WebApp for BugBounty Hunters
☆14Updated 8 years ago
Alternatives and similar repositories for bugbounty:
Users that are interested in bugbounty are comparing it to the libraries listed below
- Pentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and a…☆31Updated 2 years ago
- Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.☆11Updated 4 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…☆15Updated 7 years ago
- Web Application Security related tools. Includes backdoors, proof of concepts and tricks☆37Updated 10 years ago
- a collection of payloads for common webapps☆73Updated 12 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- Enumerate subdomains through Virustotal☆32Updated 5 years ago
- ☆47Updated 9 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆37Updated 6 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- A number of scripts POC's and problems solved as pentests move along.☆44Updated 10 months ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 11 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- A wrap up script to auto perform nmap scan from the result of dnsrecon, then output result with filename as hostname and ip☆11Updated 6 years ago
- Scripts that I've written that others may find useful☆14Updated 2 years ago
- Scans crossdomain.xml policies for expired domain names.☆25Updated 9 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆24Updated 8 years ago
- Convert your masscan/subdomain-scan results (80,443,8080) into screenshots for better analysis☆36Updated 6 years ago
- [discontinued] Mass exploiter of CVE 2015-8562 for Joomla! CMS☆24Updated 7 years ago
- Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices☆18Updated 8 years ago
- ☆46Updated 7 years ago
- Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability☆10Updated 6 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 6 years ago
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆23Updated 7 years ago
- GoPhish is a phishing script that enables rapid deployment of phishing sites.☆30Updated 6 years ago
- AV Bypass☆29Updated 7 years ago
- ☆13Updated 2 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆29Updated 6 years ago