sudosuraj / Awesome-Bug-BountyLinks
This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer while hunting. It is still under development, so feel free to contribute.
☆54Updated 2 months ago
Alternatives and similar repositories for Awesome-Bug-Bounty
Users that are interested in Awesome-Bug-Bounty are comparing it to the libraries listed below
Sorting:
- A passive way to find backups/ sensitive information.☆82Updated last month
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆91Updated 10 months ago
- Private Nuclei Templates☆100Updated 4 months ago
- ☆119Updated last year
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆139Updated last month
- Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️☆31Updated 10 months ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆61Updated 4 months ago
- ☆65Updated last year
- Grep subdomains from web pages.☆42Updated 4 months ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆33Updated last year
- A Powerful Recon Engine☆65Updated 7 months ago
- Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a var…☆42Updated 3 weeks ago
- Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript…☆82Updated 3 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆71Updated 4 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆82Updated 5 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆98Updated 9 months ago
- Organize, track, and share vulnerability findings effortlessly. This Burp Suite extension integrates with Obsidian, offering a proven not…☆31Updated 2 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆113Updated 8 months ago
- ☆134Updated 3 months ago
- ☆57Updated 10 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆117Updated 6 months ago
- shef - extract/scrape IPs from shodan without any API key☆53Updated 5 months ago
- ☆164Updated 8 months ago
- Gather results of dorks across a number of search engines☆124Updated 2 months ago
- ☆73Updated 9 months ago
- ☆94Updated 2 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated 10 months ago
- ☆59Updated 6 months ago
- KakHunt is a python GUI Tool private tool which earns me 100s of bugs every month. It spawns URLS and filters Sensitive Info.☆50Updated 2 years ago
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆65Updated 2 months ago