The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down here ππ
β258Jun 11, 2026Updated last week
Alternatives and similar repositories for Bug-Hunting-Arsenal
Users that are interested in Bug-Hunting-Arsenal are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tips For Bug Bounty Huntersβ86Jul 16, 2022Updated 3 years ago
- Web App bug huntingβ579Nov 26, 2025Updated 6 months ago
- Nuclei Templates - Here you will find the templates I use while huntingβ122Sep 27, 2021Updated 4 years ago
- BugBountyTipsβ413Jul 31, 2025Updated 10 months ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource loadβ296Sep 22, 2024Updated last year
- End-to-end encrypted cloud storage - Proton Drive β’ AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- BBT - Bug Bounty Tools (examplesπ‘)β1,897Apr 5, 2024Updated 2 years ago
- BugBounty_CheatSheetβ264May 11, 2023Updated 3 years ago
- A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTFβ172Mar 29, 2020Updated 6 years ago
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDβ¦β350Jun 17, 2023Updated 3 years ago
- AppSec Payloads Arsenal for Pentration Tester and Bug Bounty Huntersβ935Apr 1, 2026Updated 2 months ago
- Signatures for jaeles scanner by @j3ssieβ117Apr 20, 2024Updated 2 years ago
- A tools for JavaScript Reconβ24Jul 25, 2020Updated 5 years ago
- A repository that includes all the important wordlists used while bug hunting.β1,414Mar 11, 2023Updated 3 years ago
- Some simple scripts that I use during bug bounty hunting in Android Appsβ28Jan 30, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- The aim of this Reposiotry is to Provide the Resoursces of Learning at one place For Bug Bounty Hunters.β142Sep 18, 2023Updated 2 years ago
- Automated Web Recon Shell Scriptsβ54Dec 6, 2021Updated 4 years ago
- A curated list of available Bug Bounty & Disclosure Programs and Write-ups.β79Dec 3, 2023Updated 2 years ago
- β37Aug 27, 2022Updated 3 years ago
- Nuclei templates written by geeknik. Claude is my co-pilot. π€β304Feb 24, 2026Updated 3 months ago
- β18Apr 26, 2021Updated 5 years ago
- β29Dec 13, 2023Updated 2 years ago
- Hidden input parameters finderβ19Jul 10, 2023Updated 2 years ago
- A simple reconnaissance framework for bug bounty huntingβ37Oct 16, 2020Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform β’ AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.β166Jul 14, 2021Updated 4 years ago
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suiteβ81Jan 13, 2023Updated 3 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,045Jun 6, 2026Updated last week
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. π‘οΈβοΈπ§β1,839Jun 9, 2024Updated 2 years ago
- Automation for javascript recon in bug bounty.β1,093Sep 9, 2023Updated 2 years ago
- β114Apr 25, 2023Updated 3 years ago
- Open Redirection Analyzerβ812Mar 5, 2023Updated 3 years ago
- A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.β2,012Sep 5, 2021Updated 4 years ago
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilitiesβ183Mar 2, 2021Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Astra is a tool to find URLs and secrets inside a webpage/filesβ211Mar 14, 2023Updated 3 years ago
- nuclei framework scriptsβ36Jun 16, 2022Updated 4 years ago
- β149Dec 23, 2022Updated 3 years ago
- Bugbounty Resourcesβ537May 31, 2023Updated 3 years ago
- Host Header Injection Checkerβ84Mar 2, 2022Updated 4 years ago
- β59Apr 8, 2021Updated 5 years ago
- Endpoint monitor toolβ21Sep 16, 2020Updated 5 years ago