bugcrowd
There are 57 repositories under bugcrowd topic.
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
screetsec/Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
0xmaximus/Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
alexbieber/Bug_Bounty_writeups
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
Zarcolio/sitedorks
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
appsecco/bugcrowd-levelup-subdomain-enumeration
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
arkadiyt/bounty-targets
This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo
yhy0/Jie
Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gathering, and exploitation, elevating it to an indispensable toolkit for both security professionals and penetration testers. 挖洞辅助工具(漏洞扫描、信息收集)
M4DM0e/DirDar
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
bugcrowd/vulnerability-rating-taxonomy
Bugcrowd’s baseline priority ratings for common security vulnerabilities
sdushantha/dora
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
BitTheByte/Monitorizer
Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
serain/bbrecon
Python library and CLI for the Bug Bounty Recon API
pdelteil/BugBountyReportTemplates
List of reporting templates I have used since I started doing BBH.
YasserGersy/cazador_unr
Hacking tools
SKVNDR/FastDork
⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" from #HackerOne #Bugcrowd #Intigriti ...
BitTheByte/Eagle
Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
X-Vector/X-RSA
Cryptography Tool | RSA Attacks
samogod/bugradar
Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.
dwisiswant0/bounty-targets-alert
It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
secxena/credcheck
Credentials Checking Framework
SecFathy/Bugzee
Simple Script to install recommended Bug Bounty Hunting Tools In Your Linux Disto
andripwn/PayloadsAll
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
BitTheByte/Domainker
BugBounty Tool
BitTheByte/Orkestra
Web-based Android debugger with inspection capabilities using Frida and Jadx as a backbone
maddevsio/telegram_bbbot
Telegram Bug Bounty Bot
ItsIgnacioPortal/hacker-scoper
Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.
humblelad/Needle
Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip
BitTheByte/WayRobots
Tool to find stored robots.txt files from the past
imhego/HEGO-Wiki
HEGO Hunting Wiki | Offensive Cybersecurity Checklist
shubhdhungana/coolsubh
This Is The Ultimate Bug Bounty Automation & Web Hacking Tool That I've Created.
bugcrowd/vrt-ruby
Ruby library for interacting with Bugcrowd's VRT
mattreduce/bugcrowd
(Unofficial) Ruby wrapper for the Bugcrowd HTTP API
imhego/pointer
Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.
asecurityteam/bug_crowd_client
Python implementation of a Bugcrowd api client.
rodrigoramosrs/locksmith
Locksmith is a tool which allow simple way to test several API keys for a bug bounty program