bug-bounty

There are 548 repositories under bug-bounty topic.

Hack-with-Github/Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
86.8k 3.9k 09k
maurosoria/dirsearch
Web path scanner
Language:Python12.3k 310 5522.3k
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
10.8k 573 271.9k
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Language:HTML7.6k 141 8721.1k
LasCC/HackTools
The all-in-one browser extension for offensive security professionals 🛠
Language:TypeScript5.9k 187 45654
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Language:Shell5.8k 108 456935
j3ssie/osmedeus
A Workflow Engine for Offensive Security
Language:Go5.4k 135 227886
pry0cc/axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Language:Shell4.1k 90 429648
skerkour/black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Language:Rust3.9k 85 53388
zan8in/afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
Language:Go3.6k 54 113403
dwisiswant0/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
2.7k 79 18584
inonshk/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
2.1k 63 2332
kpcyrd/sn0int
Semi-automatic OSINT framework and package manager
Language:Rust2.1k 42 110183
tom0li/collection-document
Collection of quality safety articles. Awesome articles.
2k 116 2515
haccer/subjack
Subdomain Takeover tool written in Go
Language:Go1.9k 48 63341
danieldurnea/FBI-tools
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
1.8k 38 2269
nsonaniya2010/SubDomainizer
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
Language:Python1.7k 41 30235
wagiro/BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
Language:Java1.7k 58 103339
0xHJK/dumpall
一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出
Language:Python1.4k 17 20146
Cyber-Guy1/API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
1.4k 34 0249
xalgord/Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
1.4k 28 11215
trickest/inventory
Asset inventory of over 800 public bug bounty programs.
Language:Shell1.3k 52 7228
j3ssie/metabigor
OSINT tools and more but without API key
Language:Go1.3k 24 24170
0xPugal/One-Liners
A collection of one-liners for bug bounty hunting.
1.2k 17 3191
Uniswap/v3-periphery
🦄 🦄 🦄 Peripheral smart contracts for interacting with Uniswap v3
Language:TypeScript1.2k 64 1681.1k
payloadbox/xxe-injection-payload-list
🎯 XML External Entity (XXE) Injection Payload List
1.1k 23 1305
nikitastupin/clairvoyance
Obtain GraphQL API schema even if the introspection is disabled
Language:Python1.1k 12 7397
h4r5h1t/webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Language:Shell1.1k 11 14170
taielab/awesome-hacking-lists
平常看到好的渗透hacking工具和多领域效率工具的集合
1k 30 1222
yassineaboukir/sublert
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Language:Python991 33 36166
disclose/diodb
Open-source vulnerability disclosure and bug bounty program database
Language:Python989 78 72321
Ice3man543/SubOver
A Powerful Subdomain Takeover Tool
Language:Go937 28 31202
ehrishirajsharma/SwiftnessX
A cross-platform note-taking & target-tracking app for penetration testers.
Language:JavaScript892 49 63134
bl4de/security-tools
My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.
Language:Python866 38 30177
alexbieber/Bug_Bounty_writeups
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
Language:Python828 23 4122
Drew-Alleman/DataSurgeon
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text
Language:Rust760 11 1263

bug-bounty

Hack-with-Github/Awesome-Hacking

maurosoria/dirsearch

nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters

yogeshojha/rengine

LasCC/HackTools

six2dez/reconftw

j3ssie/osmedeus

pry0cc/axiom

skerkour/black-hat-rust

zan8in/afrog

dwisiswant0/awesome-oneliner-bugbounty

inonshk/31-days-of-API-Security-Tips

kpcyrd/sn0int

tom0li/collection-document

haccer/subjack

danieldurnea/FBI-tools

nsonaniya2010/SubDomainizer

wagiro/BurpBounty

0xHJK/dumpall

Cyber-Guy1/API-SecurityEmpire

xalgord/Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes

trickest/inventory

j3ssie/metabigor

0xPugal/One-Liners

Uniswap/v3-periphery

payloadbox/xxe-injection-payload-list

nikitastupin/clairvoyance

h4r5h1t/webcopilot

taielab/awesome-hacking-lists

yassineaboukir/sublert

disclose/diodb

Ice3man543/SubOver

ehrishirajsharma/SwiftnessX

bl4de/security-tools

alexbieber/Bug_Bounty_writeups

Drew-Alleman/DataSurgeon