Alternatives and similar repositories for bugbounty

Users that are interested in bugbounty are comparing it to the libraries listed below

• ngalongc / nmap_dnsrecon_result
  A wrap up script to auto perform nmap scan from the result of dnsrecon, then output result with filename as hostname and ip
  ☆12Updated 7 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆48Updated 3 years ago
• owtf / ptp
  Pentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and a…
  ☆31Updated 2 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Updated 12 years ago
• n4xh4ck5 / V1D0m
  Enumerate subdomains through Virustotal
  ☆32Updated 6 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• 0xSobky / XSSBuster
  XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!
  ☆38Updated 7 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆72Updated 12 years ago
• mandatoryprogrammer / xpire-crossdomain-scanner
  Scans crossdomain.xml policies for expired domain names.
  ☆26Updated 10 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆44Updated last year
• n4xh4ck5 / N4xD0rk
  Listing subdomains about a main domain
  ☆58Updated 7 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆41Updated 7 years ago
• mandatoryprogrammer / xcname
  A tool for enumerating expired domains in CNAME records
  ☆60Updated 9 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆42Updated 8 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 6 years ago
• joda32 / CertCrunchy
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆29Updated 2 years ago
• si9int / ScreenShooter
  Convert your masscan/subdomain-scan results (80,443,8080) into screenshots for better analysis
  ☆36Updated 7 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Updated 7 years ago
• abatsakidis / Scythian
  Vulnerability Assessment and Penetration Testing Toolkit
  ☆19Updated 4 years ago
• averagesecurityguy / searchscan
  Search Nmap and Metasploit scanning scripts.
  ☆53Updated 8 years ago
• ZephrFish / AttackDeploy
  Scripts for Deploying new server
  ☆49Updated 8 months ago
• milo2012 / nmap2nessus
  ☆46Updated 8 years ago
• menzow / sn1per-docker
  Dockerized version of Sn1per (https://github.com/1N3/Sn1per)
  ☆60Updated 7 years ago
• Spacecow99 / searchsploit2
  Search the ExploitDB with a little more control
  ☆22Updated 8 years ago
• hvqzao / report-ng
  Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.
  ☆67Updated last year
• infosec-au / webappsec-toolkit
  Web Application Security related tools. Includes backdoors, proof of concepts and tricks
  ☆37Updated 11 years ago
• 1N3 / CloudHunter
  Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them
  ☆36Updated 7 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆23Updated 8 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 13 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆15Updated 7 years ago