pikpikcu

XRCross

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

nuclei-templates

Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.

nuclei-fuzz

bash-recon

[+] bash recon

awesome-oneliner-bugbounty

A collection of awesome one-liner scripts especially for bug bounty tips.

WebHackersWeapons

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

bug-actions

dotfile

my-nuclei-templates

open-source-web-scanners

A list of open source web security scanners

Awesome-WAF

🔥 Everything about web-application firewalls (WAF).

axiom

A dynamic infrastructure toolkit for red teamers and bug bounty hunters!

bbot

OSINT automation for hackers.

bugbounty

Bugbounty Resources

cent

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

iVANTI-CVE-2021-38560

SubOver

A Powerful Subdomain Takeover Tool

teler

Real-time HTTP Intrusion Detection

top25-parameter

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

unew

A tool for append URLs, skipping duplicates & combine parameters.

Awesome-Asset-Discovery

List of Awesome Asset Discovery Resources

dtd-finder

List DTDs and generate XXE payloads using those local DTDs.

fuzzing-templates

Community curated list of nuclei templates for finding unknown security vulnerabilities.

jaeles-signatures

Default signature for Jaeles Scanner

pikpikcu

public-bugbounty-programs

Community curated list of public bugbounty and responsible disclosure programs.

ssrf-tool

subfinder

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

test

xss-actions