sudosuraj / Awesome-Bug-Bounty
This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer while hunting. It is still under development, so feel free to contribute.
☆43Updated last month
Alternatives and similar repositories for Awesome-Bug-Bounty:
Users that are interested in Awesome-Bug-Bounty are comparing it to the libraries listed below
- ☆46Updated last month
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆97Updated 2 weeks ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 8 months ago
- A passive way to find backups/ sensitive information.☆77Updated 3 weeks ago
- Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️☆32Updated 8 months ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆31Updated last year
- Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a var…☆37Updated last week
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆13Updated 5 months ago
- A Powerful Recon Engine☆63Updated 5 months ago
- Passive Web Vulnerability Detection Tool☆31Updated 3 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆112Updated 6 months ago
- Gather results of dorks across a number of search engines☆112Updated this week
- Grep subdomains from web pages.☆42Updated 2 months ago
- Python for AWAE (Advanced Web Attacks and Exploitation)☆93Updated last year
- ☆119Updated last year
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆111Updated 4 months ago
- ☆122Updated last month
- ☆34Updated 4 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆73Updated 3 weeks ago
- CLI tool for fetching URLs from Wayback Machine, Common Crawl, and VirusTotal.☆35Updated 5 months ago
- Bug Bounty Web and API Payloads☆34Updated 5 months ago
- A collection of slides and presentations from BSides Ahmedabad 2024, held on October 12th and 13th. This repository features key insights…☆37Updated 6 months ago
- ☆16Updated 8 months ago
- Private Nuclei Templates��☆98Updated 2 months ago
- ☆64Updated last year
- Collection of Facebook Bug Bounty Writeups☆29Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆77Updated 3 months ago
- Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript…☆80Updated last month
- Here are some cool and some unpublished Dorks☆70Updated 3 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆59Updated 6 months ago