Alternatives and similar repositories for bugbounty

Users that are interested in bugbounty are comparing it to the libraries listed below

• owtf / ptp
  Pentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and a…
  ☆31Updated 2 years ago
• ngalongc / nmap_dnsrecon_result
  A wrap up script to auto perform nmap scan from the result of dnsrecon, then output result with filename as hostname and ip
  ☆11Updated 6 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• n4xh4ck5 / V1D0m
  Enumerate subdomains through Virustotal
  ☆32Updated 5 years ago
• infosec-au / webappsec-toolkit
  Web Application Security related tools. Includes backdoors, proof of concepts and tricks
  ☆37Updated 10 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆73Updated 12 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 7 years ago
• Cillian-Collins / Recon
  The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…
  ☆15Updated 7 years ago
• cornerpirate / iRecon
  Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.
  ☆11Updated 4 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆40Updated 6 years ago
• mandatoryprogrammer / xpire-crossdomain-scanner
  Scans crossdomain.xml policies for expired domain names.
  ☆25Updated 9 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• 0xSobky / XSSBuster
  XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!
  ☆38Updated 6 years ago
• anshumanbh / FASTSAM
  Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices
  ☆18Updated 8 years ago
• bugbountyworld / BugBountyWorld
  ☆13Updated 2 years ago
• diljith369 / avbypassGo
  AV Bypass
  ☆29Updated 7 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Updated 11 years ago
• incredibleindishell / LDAP-credentials-collector-backdoor-generator
  This script generate backdoor code which log username password of an user who have passed HTTP basic auth using LDAP credentials.
  ☆58Updated 8 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆38Updated 8 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆45Updated 11 months ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• smiegles / crossdomain
  Exploit insecure crossdomain.xml files.
  ☆26Updated 8 years ago
• joda32 / CertCrunchy
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆30Updated last year
• arvinddoraiswamy / ThickClientScripts
  My IDA scripts, tips and testing techniques for Thick Client applications.
  ☆17Updated 10 years ago
• tahmed11 / strutsy
  Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability
  ☆10Updated 6 years ago
• thirdeyeintelligence / IOCs-in-CSV-format
  The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research
  ☆12Updated 7 years ago