kharaone

axiom

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

hackerone-reports

Top disclosed reports from HackerOne

awesome-burp-extensions

A curated list of amazingly awesome Burp Extensions

weird_proxies

Reverse proxies cheatsheet

Galaxy-Bugbounty-Checklist

Tips and Tutorials for Bug Bounty and also Penetration Tests.

imagejs

Small tool to package javascript into a valid image file.

AllVideoPocsFromHackerOne

This script grab public report from hacker one and make some folders with poc videos

Shockwave-OSS

JSONBee

A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.

socialhunter

crawls the website and finds broken social media links that can be hijacked

BChecks

BChecks collection for Burp Suite Professional and Burp Suite Enterprise Edition

Spoofy

Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.

gato

GitHub Actions Pipeline Enumeration and Attack Tool

IIS-Raid

A native backdoor module for Microsoft IIS (Internet Information Services)

collaborator-everywhere

A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator

csprecon

Discover new target domains using Content Security Policy

urldedupe

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

missing-cve-nuclei-templates

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

cloudflare-origin-ip

Try to find the origin IP of a webapp protected by Cloudflare.

wraith

Uncover forgotten secrets and bring them back to life, haunting security and operations teams.

pwnhub

How GitHub Actions workflows can be hacked

Subdominator

SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty

Elevate

Horizontal Domain Discovery

gfx

A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.

orgs-data

Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations

Snaike-MLflow

MLflow red team toolsuite

shortnameguesser

A tool to guess the rest of the shortnames provided by vulnerable IIS instances.

burp2caido

A tool to migrate Burpsuite HTTP history to Caido.

BOR

BOR - Break On Request, is a burp extension that provides a custom context menu for marking requests to be stopped by the interceptor with only one click!

scopy

Filter URLs that match your scope file for bugbounty.