A collection of scripts for bug-bounty related stuff
☆39Sep 4, 2020Updated 5 years ago
Alternatives and similar repositories for ugly-scripts
Users that are interested in ugly-scripts are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A wrapper around jq, to help you parse jq output!☆30Aug 23, 2020Updated 5 years ago
- Simple tools to handle string and generate subdomain permutations☆15Jun 8, 2022Updated 4 years ago
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆25Sep 3, 2021Updated 4 years ago
- Everything about xss protection technology☆14Oct 22, 2019Updated 6 years ago
- An nmap script to produce target lists for use with various tools.☆32May 13, 2021Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Improve automated and semi-automated active scanning in Burp Pro☆66Jun 4, 2025Updated last year
- Collection of snippets for devtools.☆13Mar 17, 2021Updated 5 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Mar 7, 2021Updated 5 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆19Nov 18, 2019Updated 6 years ago
- Collection of rules for Static Application Security Testing (SAST) with Semgrep☆12Apr 16, 2025Updated last year
- Check for know iframeBuster XSS☆12Sep 25, 2024Updated last year
- Service-Now Article Bruteforcer☆16Jun 5, 2020Updated 6 years ago
- A collection of famous recon public scripts, but in bash <3☆30Mar 2, 2021Updated 5 years ago
- Validate proxies for specific domain☆39Aug 14, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Query various sources for CVE proof-of-concepts☆51Jun 1, 2023Updated 3 years ago
- ☆13Oct 3, 2023Updated 2 years ago
- a Go code to detect leaks in JS files via regex patterns☆152Oct 20, 2021Updated 4 years ago
- Client-Side Prototype Pollution Tools☆88Sep 21, 2021Updated 4 years ago
- Tool to extract & validate google fcm server keys from apks☆31Jan 20, 2021Updated 5 years ago
- Search for secrets inside user data attached to EC2 instances on multiple AWS accounts☆16Jun 19, 2024Updated last year
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆42Nov 10, 2025Updated 7 months ago
- Labs from our workshop "Demystifying the server-side".☆17May 30, 2022Updated 4 years ago
- Small wiki for Mobile Application Penetration Testing Tools☆12Apr 8, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A Golang module to resolve multiple DNS requests concurrently while respecting a rate limit on the resolvers.☆11May 26, 2021Updated 5 years ago
- web-based-fuzzer☆31Jun 26, 2020Updated 5 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆91Nov 21, 2021Updated 4 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆122Sep 27, 2021Updated 4 years ago
- Prototype Pollution Scanner☆143Apr 11, 2021Updated 5 years ago
- Extract endpoints from specific Git repository for fuzzing☆23Nov 3, 2020Updated 5 years ago
- ☆18Apr 26, 2021Updated 5 years ago
- ☆49Mar 25, 2022Updated 4 years ago
- A tools for JavaScript Recon☆24Jul 25, 2020Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 🔭 Collection of regexp pattern for security passive scanning☆115Feb 18, 2023Updated 3 years ago
- OWASP Amass data source scripts (assetfinder, findomain, github, subfinder)☆105Oct 18, 2020Updated 5 years ago
- A small pentesting lab for Azure☆10Apr 19, 2019Updated 7 years ago
- ReconMaster contest - scripts used and a write-up☆89Sep 20, 2021Updated 4 years ago
- Implementation of Wappalyzer in Python☆52Dec 8, 2022Updated 3 years ago
- Webapp to search tips on Twitter through #bugbountytips☆71Dec 2, 2022Updated 3 years ago
- ☆37Aug 27, 2022Updated 3 years ago