sudosuraj / Awesome-Bug-BountyLinks
This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer while hunting. It is still under development, so feel free to contribute.
☆60Updated 5 months ago
Alternatives and similar repositories for Awesome-Bug-Bounty
Users that are interested in Awesome-Bug-Bounty are comparing it to the libraries listed below
Sorting:
- ☆182Updated 11 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆176Updated last week
- Private Nuclei Templates☆100Updated 7 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆98Updated 3 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆115Updated 11 months ago
- A passive way to find backups/ sensitive information.☆88Updated 2 months ago
- ☆59Updated last year
- Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️☆35Updated last year
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆123Updated 9 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆133Updated last week
- ☆124Updated last month
- ☆153Updated last year
- Python for AWAE (Advanced Web Attacks and Exploitation)☆99Updated 2 years ago
- Automated Subdomain Enumeration and Scanning Tool☆116Updated 2 years ago
- bring shodan facets into your terminal without API key.☆67Updated 2 months ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆82Updated 3 months ago
- A Powerful Recon Engine☆68Updated 10 months ago
- ☆46Updated 6 months ago
- ☆145Updated 6 months ago
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆65Updated last year
- ☆69Updated 4 months ago
- Grep subdomains from web pages.☆44Updated 7 months ago
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆134Updated last year
- ☆78Updated last year
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆178Updated 6 months ago
- ☆66Updated 2 years ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆62Updated 7 months ago
- HackLiners: CyberSec/BugHunting OneLiners☆60Updated 11 months ago
- Automate Recon XSS Bug Bounty☆172Updated 3 months ago
- This repository updates latest Bug Bounty medium writeups every 10 minutes, https://readmedium.com/Medium_URL, https://archive.ph/Medium_…☆107Updated this week