Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
-
Updated
Mar 13, 2024 - Go
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
OSINT tools and more but without API key
Metlo is an open-source API security platform.
Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
This extension will help you to detect GET/POST based XSS vulnerability in any website easily
A Python script designed to monitor bug bounty programs for any changes and promptly notify users.
Self-hosted passive subdomain continous monitoring tool.
All in one web Recon app
My useful files for penetration tests, security assessments, bug bounty and other security related stuff
Detect Program Bug Bounty
A CDN Domain Fronting Tool or Websocket Discovery written in Python
🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.
yataf extracts secrets and paths from files or urls - its best used against javascript files
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Online tips and explain the commands, for the better understanding of new hunters..
A tool offering templates for streamlined bug bounty reporting
Status Checker is a Python tool for swiftly checking the status of URLs. It categorizes responses by HTTP status codes, offering clear insights into website health. With async requests, color-coded output, and easy CLI usage, it's a handy solution for monitoring web service performance.
CRLF Bug scanner for WebPentesters and Bugbounty Hunters
Subsleuth is a powerful subdomain bruteforcing for bug bounty hunters and penetration testers to discover subdomains and enhance their web security testing.
Automate Nuclei scans and streamline bug hunting workflows
Fetch all the URLs that the Wayback Machine knows about for a domain
Add a description, image, and links to the bugbounty-tools topic page so that developers can more easily learn about it.
To associate your repository with the bugbounty-tools topic, visit your repo's landing page and select "manage topics."