soy-elmago/Magic-CheckList-for-Web-Applications external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

soy-elmago/Magic-CheckList-for-Web-Applications

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/soy-elmago/Magic-CheckList-for-Web-Applications)

Close

soy-elmago / Magic-CheckList-for-Web-ApplicationsView on GitHubMore

• External links
• Readme badge

Web Security Checklist (Bug Bounty & Pentesting)

☆173Jun 15, 2025Updated 11 months ago

Alternatives and similar repositories for Magic-CheckList-for-Web-Applications

Users that are interested in Magic-CheckList-for-Web-Applications are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• novanazizr / BugBountyHunting

  View on GitHub
  Some Tutorials and Things to Help Bug Hunter
  ☆31Mar 17, 2021Updated 5 years ago
• geeknik / nuclei-template-generator

  View on GitHub
  A simple tool which makes creating nuclei templates even easier.
  ☆37Jun 23, 2024Updated last year
• l34r00t / mainRecon

  View on GitHub
  mainRecon is an automated reconnaissance docker image for bugbounty hunter write in bash script.
  ☆94Feb 18, 2026Updated 3 months ago
• Emoe / OpenBugBounty-Scrapper

  View on GitHub
  This script scrapes the list of open Bug Bounty Programs from openbugbounty.org
  ☆28Mar 22, 2022Updated 4 years ago
• cqsd / daily-commonspeak2

  View on GitHub
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆40May 21, 2021Updated 5 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• MShahine / Bug-Bounty-Recon

  View on GitHub
  All The Notes And Tips I FOund In Github And Twitter I Put Them Here
  ☆35Aug 31, 2020Updated 5 years ago
• incogbyte / jsearch

  View on GitHub
  ☆32Apr 6, 2021Updated 5 years ago
• Muhammd / awesome-bug-bounty

  View on GitHub
  ☆43Feb 26, 2019Updated 7 years ago
• 1ndianl33t / BugBounty_Profile

  View on GitHub
  Recon_profile
  ☆38May 18, 2020Updated 6 years ago
• ryandamour / crlfmap

  View on GitHub
  CRLFMap is a tool to find HTTP Splitting vulnerabilities
  ☆32Oct 11, 2020Updated 5 years ago
• KathanP19 / gaussrf

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆175Nov 11, 2020Updated 5 years ago
• ethicalhackingplayground / Bug-Bounty-Tools

  View on GitHub
  The tools I have programmed to help me with bugbounty's
  ☆117Oct 10, 2019Updated 6 years ago
• mrnitesh / WSDL

  View on GitHub
  It contain google dork to find the wsdl file.
  ☆13May 27, 2020Updated 5 years ago
• zeroc00I / ReconNotes

  View on GitHub
  Just some public notes that can be useful and i want let the world knows.
  ☆92Oct 18, 2020Updated 5 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• fellchase / flumberboozle

  View on GitHub
  Suite of programs meant to aid in bug hunting and security assessments
  ☆77Dec 29, 2019Updated 6 years ago
• six2dez / burp-bounty-profiles

  View on GitHub
  Burp Bounty profiles compilation, feel free to contribute!
  ☆150Sep 24, 2021Updated 4 years ago
• shubhdhungana / bug_bounty_checklist

  View on GitHub
  My Notes & Resources Of Bug Bounty Checklists
  ☆87Dec 28, 2024Updated last year
• Fawadkhanfk / Check-List

  View on GitHub
  Check List
  ☆81Jul 16, 2022Updated 3 years ago
• edduu / Arjun

  View on GitHub
  HTTP parameter discovery suite.
  ☆93Apr 16, 2020Updated 6 years ago
• yaworsk / bugbounty

  View on GitHub
  All Things Bug Bounty
  ☆115Jun 1, 2022Updated 3 years ago
• hahwul / ras-fuzzer

  View on GitHub
  RAS(RAndom Subdomain) Fuzzer
  ☆42Jan 22, 2020Updated 6 years ago
• soy-elmago / SubMagic

  View on GitHub
  Scripts to automate RECON process
  ☆11Aug 31, 2025Updated 8 months ago
• Fawadkhanfk / Hunting-Tips

  View on GitHub
  Tips For Bug Bounty Hunters
  ☆86Jul 16, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• emadshanab / 971-MB-content_discovery_wordlist

  View on GitHub
  Collection of content discovery wordlists in one wordlist.
  ☆37Jan 18, 2022Updated 4 years ago
• ethicalhackingplayground / Zin

  View on GitHub
  A Payload Injector for bugbounties written in go
  ☆70Jul 18, 2020Updated 5 years ago
• ethicalhackingplayground / Gxss

  View on GitHub
  Tool for checking reflecting Parameters in a URL.
  ☆10Aug 31, 2020Updated 5 years ago
• BountyStrike / Bountystrike-sh

  View on GitHub
  Poor (rich?) man's bug bounty pipeline https://dubell.io
  ☆291Apr 24, 2023Updated 3 years ago
• 0xspade / Automated-Scanner

  View on GitHub
  Trying to make automated recon for bug bounties
  ☆255May 3, 2021Updated 5 years ago
• Phoenix1112 / ParamReplace

  View on GitHub
  ☆11May 15, 2020Updated 6 years ago
• dwisiswant0 / awesome-oneliner-bugbounty

  View on GitHub
  A collection of awesome one-liner scripts especially for bug bounty tips.
  ☆3,120Jul 29, 2024Updated last year
• febinrev / quester

  View on GitHub
  QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.
  ☆15Aug 2, 2021Updated 4 years ago
• Josue87 / wp_hunter

  View on GitHub
  Static analysis of wordpress plugins
  ☆59Dec 16, 2020Updated 5 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• xer0times / BugBounty

  View on GitHub
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆146Jul 30, 2020Updated 5 years ago
• bilbomal / BB-Tips

  View on GitHub
  Collection of Bug Bounty Tips
  ☆65Dec 10, 2019Updated 6 years ago
• ghsec / webHunt

  View on GitHub
  Web App bug hunting
  ☆577Nov 26, 2025Updated 6 months ago
• R0X4R / D4rkXSS

  View on GitHub
  A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
  ☆171Mar 29, 2020Updated 6 years ago
• jakejarvis / bounty-domains

  View on GitHub
  List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)
  ☆74May 23, 2021Updated 5 years ago
• TypeError / domained

  View on GitHub
  Multi Tool Subdomain Enumeration
  ☆722Apr 11, 2021Updated 5 years ago
• 0xAwali / Virtual-Host

  View on GitHub
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆52Jan 11, 2022Updated 4 years ago