Alternatives and similar repositories for hackerone_public_reports

Users that are interested in hackerone_public_reports are comparing it to the libraries listed below

• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆87Updated 9 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆150Updated 6 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆102Updated 4 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆134Updated last year
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆127Updated last year
• avlidienbrunn / bountydash
  BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
  ☆152Updated 3 months ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• 0xbharath / domains-from-csp
  A script to extract domain names from Content Security Policy(CSP) headers
  ☆112Updated 6 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆128Updated 8 years ago
• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆164Updated 5 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago
• Cleveridge / cleveridge-subdomain-scanner
  The Cleveridge Subdomain Scanner finds subdomains of a given domain.
  ☆37Updated 5 years ago
• commixproject / commix-testbed
  A collection of web pages, vulnerable to command injection flaws.
  ☆180Updated 2 years ago
• Damian89 / xssfinder
  Toolset for detecting reflected xss in websites
  ☆115Updated 6 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆214Updated 9 months ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆109Updated 9 years ago
• tcpiplab / Web-App-Hacking-Notes
  Notes I've taken while working through various web app pentesting labs.
  ☆93Updated 7 years ago
• EdOverflow / bugbountywiki
  The Bug Bounty Wiki
  ☆172Updated 6 years ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆220Updated 2 years ago
• csmali / WebVulnerabilityWriteUps
  ☆27Updated 5 years ago
• Hacker0x01 / h1-212-ctf-solutions
  A collection of the solutions people wrote for the H1-212 Capture The Flag event
  ☆95Updated 6 years ago
• err0rr / SSTI
  ☆38Updated 5 years ago
• ollseg / ttt-ext
  Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.
  ☆81Updated 6 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆139Updated 4 years ago
• random-robbie / Jira-Scan
  CVE-2017-9506 - SSRF
  ☆189Updated 3 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 9 months ago