Alternatives and similar repositories for hackerone_public_reports:

Users that are interested in hackerone_public_reports are comparing it to the libraries listed below

• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• meliht / TaktikselBugHunting
  Taktiksel Bug Hunting Yöntemleri
  ☆42Updated 7 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆86Updated 8 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆132Updated last year
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆102Updated 4 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆149Updated 6 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• jhaddix / scripts
  Usefull stuff from around teh internetz
  ☆109Updated 7 years ago
• 0xbharath / domains-from-csp
  A script to extract domain names from Content Security Policy(CSP) headers
  ☆111Updated 5 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆61Updated 8 years ago
• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆164Updated 5 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆138Updated 5 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆108Updated 8 years ago
• 0ang3el / EasyCSRF
  ☆160Updated 7 years ago
• incogbyte / jsearch
  ☆29Updated 3 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 9 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 5 months ago
• ollseg / ttt-ext
  Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.
  ☆81Updated 5 years ago
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆154Updated this week
• PortSwigger / scan-check-builder
  Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
  ☆71Updated 3 years ago
• Cleveridge / cleveridge-subdomain-scanner
  The Cleveridge Subdomain Scanner finds subdomains of a given domain.
  ☆37Updated 5 years ago
• 0xbharath / assets-from-spf
  A Python script to parse net blocks & domain names from SPF record
  ☆82Updated 4 years ago
• csmali / WebVulnerabilityWriteUps
  ☆27Updated 5 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆101Updated last year
• kapytein / jsonp
  jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
  ☆151Updated 4 years ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 4 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆55Updated 6 years ago
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆213Updated 7 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆224Updated 5 months ago