bsysop

blind-ssrf-chains

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

jwt-hack

🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

Amass

In-depth Attack Surface Mapping and Asset Discovery

awesome-bbht

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain. Feel free to fork, and add your own tools.

bbrecon

Python library and CLI for the Bug Bounty Recon API

burp-piper-custom-scripts

Custom scripts for the PIPER Burp extensions.

byp4xx

Simple bash script to bypass "403 Forbidden" messages with well-known methods discussed in #bugbountytips

CVE-2020-1948

CVE-2020-5410-POC

CVE-2020-5410 Spring Cloud Config directory traversal vulnerability

ditto

A tool for IDN homograph attacks and detection.

DomLink

A tool to link a domain with registered organisation names and emails, to other domains.

dtd-finder

List DTDs and generate XXE payloads using those local DTDs.

eos

Enemies Of Symfony - Debug mode Symfony looter

exclude-cdn

Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin

explo

Human and machine readable web vulnerability testing format

GitDorker

A Python program to scrape secrets from GitHub through usage of a large repository of dorks.

nuclei-templates

Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.

OneListForAll

Rockyou for web fuzzing

oobfuzz

Conduct OOB Fuzzing of targets with custom payloads towards callback server

PacketProxy

A local proxy written in Java

Spring-Boot-Vulnerability

spring-view-manipulation

When MVC magic turns black

SSRFire

An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects

sub.sh

Multiprocessing(Parallel)Subdomain Detect Script

Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

trivy

A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI

TukTuk

Tool for catching and logging different types of requests.

urldedupe

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

web-payloads

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

wraith-signatures

Signatures for wraith used to detect secrets across various sources