w9w / JSA

Related projects: ⓘ

• 0xDexter0us / Scavenger
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆228Updated 2 years ago
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆287Updated last year
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆208Updated 2 years ago
• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆328Updated 4 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆169Updated 2 years ago
• ameenmaali / wordlistgen
  Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
  ☆213Updated 2 years ago
• dwisiswant0 / gf-secrets
  Secret and/or credential patterns used for gf.
  ☆229Updated last year
• pdelteil / BugBountyReportTemplates
  List of reporting templates I have used since I started doing BBH.
  ☆226Updated this week
• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆299Updated last year
• xnl-h4ck3r / urless
  De-clutter a list of URLs
  ☆307Updated 5 months ago
• mikey96 / reflection-public
  ☆157Updated this week
• geeknik / the-nuclei-templates
  Nuclei templates written by us.
  ☆263Updated 3 years ago
• bp0lr / gauplus
  ☆282Updated 2 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆214Updated 4 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆107Updated last year
• 0x240x23elu / JSScanner
  Js File Scanner
  ☆159Updated 2 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆196Updated 2 years ago
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆445Updated 2 years ago
• codingo / bbr
  An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
  ☆206Updated 3 years ago
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆204Updated 2 months ago
• ferreiraklet / airixss
  Finding XSS during recon
  ☆245Updated 2 years ago
• emadshanab / Gf-Patterns-Collection
  ☆142Updated last year
• pdelteil / BugBountyHuntingScripts
  ☆192Updated this week
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆176Updated 3 years ago
• BountyStrike / Bountystrike-sh
  Poor (rich?) man's bug bounty pipeline https://dubell.io
  ☆267Updated last year
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆212Updated 3 weeks ago
• hakluke / bug-bounty-standards
  A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…
  ☆227Updated 2 years ago
• yavolo / eventlistener-xss-recon
  ☆128Updated last year
• g0ldencybersec / gungnir
  CT Log Scanner
  ☆241Updated 3 months ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆156Updated 5 months ago