A resources for who want to learn and get deep into client-side bugs
☆426Dec 8, 2024Updated last year
Alternatives and similar repositories for client-side-bugs-resources
Users that are interested in client-side-bugs-resources are comparing it to the libraries listed below
Sorting:
- zwatcher is a lightweight bash script for monitoring sub/domains or a list of sub/domains and javascript files. It compares HTTP status c…☆21Nov 23, 2025Updated 3 months ago
- ☆20Mar 4, 2025Updated last year
- 10,000 H1 Disclosed Reports☆118May 10, 2024Updated last year
- ☆26Feb 21, 2026Updated last week
- An enhanced OWASP Testing Guide v4.2 with tips, tricks, and new vulnerabilities not in the OWASP list. Features modular testing, actionab…☆92Feb 9, 2025Updated last year
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,266Feb 10, 2024Updated 2 years ago
- CORSER is a Golang CLI Application for Advanced CORS Misconfiguration Detection☆60Oct 26, 2024Updated last year
- Gather results of dorks across a number of search engines☆200Jan 22, 2026Updated last month
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆773Dec 9, 2025Updated 2 months ago
- ☆19Nov 25, 2025Updated 3 months ago
- Automated GitHub secret scanning with smart alerting & monitoring.☆30Jan 15, 2026Updated last month
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…☆12May 28, 2023Updated 2 years ago
- ☆17Oct 15, 2024Updated last year
- Rust-powered HTTP Request Smuggling Scanner.☆107Updated this week
- A collection of js analysis tools & scripts.☆19Updated this week
- ☆858Dec 26, 2025Updated 2 months ago
- ☆181Oct 15, 2024Updated last year
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆434Oct 16, 2025Updated 4 months ago
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…☆121Sep 12, 2025Updated 5 months ago
- Process URLs and remove duplicate query parameters.☆27Mar 19, 2024Updated last year
- AutoAR is a comprehensive, modular security automation toolkit designed for bug bounty hunters, penetration testers, and security researc…☆54Feb 2, 2026Updated last month
- ♥☆177Sep 7, 2025Updated 5 months ago
- how to look for Leaked Credentials !☆1,033May 6, 2024Updated last year
- 1337 Wordlists for Bug Bounty Hunting☆932Updated this week
- ☆25Feb 10, 2026Updated 3 weeks ago
- ☆477Aug 21, 2025Updated 6 months ago
- A collection of notes for bug bounty hunting☆281Sep 29, 2023Updated 2 years ago
- jxscout superpowers JavaScript analysis for security researchers☆422Feb 15, 2026Updated 2 weeks ago
- BackupFinder discovers backup files on web servers by generating intelligent patterns.☆103Jul 29, 2025Updated 7 months ago
- A powerful static analysis tool that uses AI to scan Android APK files for security vulnerabilities and potential issues. The scanner dec…☆27Apr 6, 2025Updated 10 months ago
- ☆18Jul 21, 2025Updated 7 months ago
- This Tool To Test Machine Keys In View State☆85Oct 11, 2024Updated last year
- Quick research done on some bug bounty blogs! Check em out :)☆151Jan 19, 2025Updated last year
- ☆562Feb 3, 2026Updated last month
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆291Apr 9, 2024Updated last year
- ☆38Nov 24, 2025Updated 3 months ago
- ☆63Jul 14, 2025Updated 7 months ago
- Top disclosed reports from HackerOne☆5,358Updated this week
- Chrome extension for automating CSPT discovery☆138Dec 23, 2025Updated 2 months ago