Alternatives and similar repositories for bugbounty

Users that are interested in bugbounty are comparing it to the libraries listed below

• Lupin-Holmes / sandwich
  ☆75Updated last year
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆140Updated last year
• yavolo / eventlistener-xss-recon
  ☆149Updated 2 years ago
• xhzeem / toxicache
  Go scanner to find web cache poisoning vulnerabilities in a list of URLs
  ☆147Updated last year
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆97Updated 3 years ago
• vitorfhc / gecko
  Chrome extension for automating CSPT discovery
  ☆124Updated last week
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆151Updated last year
• sametsahinnet / jsscm
  JSSCM detects expired domains for Stored XSS exploitation during browsing.
  ☆54Updated 8 months ago
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆101Updated last year
• CharanRayudu / Custom-Nuclei-Templates
  ☆129Updated 4 years ago
• ethicalhackingplayground / pathbuster
  A path-normalization pentesting tool.
  ☆135Updated 2 months ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆157Updated last year
• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆83Updated last week
• emadshanab / Gf-Patterns-Collection
  ☆157Updated 2 years ago
• doosec101 / swagger_scanner
  This tool checks if the given Url/File has Swagger Ui, That can be tested later..
  ☆37Updated 2 years ago
• wdahlenburg / VhostFinder
  Identify virtual hosts by similarity comparison
  ☆133Updated last year
• Cyber-Guy1 / domainCollector
  Simple tool to gather domains from crt.sh using the organization name
  ☆102Updated 3 years ago
• c0dejump / wcDetect
  web cache deception detect
  ☆35Updated 2 weeks ago
• ldcvanderpoel / Burp-Wordlist-Generator
  This Burp extension extracts various data (path, parameter keys, parameter values, subdomains, etc.) from the sitemap. This data is used …
  ☆43Updated 4 years ago
• ViktorMares / ultimate_discovery
  Ultimate Wordlist for Web Content Discovery
  ☆67Updated 7 months ago
• Zeetaz / FancyTracker
  A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…
  ☆111Updated 3 months ago
• Ph33rr / cirrusgo
  A fast tool to scan SAAS,PAAS App written in Go
  ☆84Updated 2 years ago
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆74Updated 6 months ago
• orwagodfather / My-WordLISTs
  ☆146Updated 4 years ago
• orwagodfather / x
  ☆99Updated 2 years ago
• fransr / unpack-burp
  For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)
  ☆54Updated 9 months ago
• M359AH / DepFine
  DepFine Is a tool to find the unregistered dependency based on dependency confusion valunerablility and lead to RCE
  ☆27Updated 4 years ago
• mhmdiaa / waybackrobots
  Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
  ☆53Updated 2 years ago
• 0xElkot / My-Nuclei-Templates
  ☆35Updated 3 years ago
• orwagodfather / SQL-Wordlist
  ☆81Updated last year