bug-hunting

There are 6 repositories under bug-hunting topic.

• skerkour / black-hat-rust

  Applied offensive security with Rust - https://kerkour.com/black-hat-rust

  auditbeaconbug-bountybug-huntingc2hackinginfosecoffensive-securitypentestpentestingphishingred-teamrustscannersecuritysecurity-toolsshellcodestrojanviruswasm
  Language:Rust 3049

• antonio-morales / Fuzzing101

  An step by step fuzzing tutorial. A GitHub Security Lab initiative

  aflafl-fuzzbug-huntingbugbountyeducationfuzz-testingfuzzerfuzzillifuzzinghackingsecuritytestingvulnerabilities
  2300
• awesome-bbht

  Subn0x / awesome-bbht

  A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

  hackinghacking-toolshacking-toolbugbountybug-bountyreconnaissancesecurity-toolsenumerate-subdomainsreconpenetration-testingexploitationbug-hunting
  Language:Shell 545
• abyss

  patois / abyss

  abyss - augmentation of Hexrays decompiler output

  idaproidapython-pluginidapythonhexraysdecompilercode-auditingdecompilationpluginaugmentationbug-hunting
  Language:Python 316

• edoardottt / missing-cve-nuclei-templates

  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

  cvenucleinuclei-templatesbug-bountybugbountysecurityautomationbug-huntingbugbounty-toolcve-scanninghackingsecurity-toolsbugbountytipspenetration-testingpentestingvulnerability-detectionvulnerability-scannersnuclei-engineprojectdiscovery
  Language:Shell 281
• XSScope

  kleiton0x00 / XSScope

  XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.

  bug-huntingcybersecurityethical-hackingxss
  Language:HTML 270
• handbook

  0xffsec / handbook

  A living document for penetration testing and offensive security.

  hackingpentestingoscphacktheboxowaspsecuritypenetration-testinginfosechackerpentesting-toolscybersecurityethical-hackingexploitvulnerabilitiessecurity-toolsbug-bountybug-huntingejptptskali
  Language:HTML 252

• hackingguy / Bug-Hunting-Colab

  A Colab For Bug Hunting!

  bug-huntingbugbountygoogle-colabvpscolab
  Language:Jupyter Notebook 199
• bash_scripting

  bing0o / bash_scripting

  bash scripting thing!

  hackingbug-bountybug-huntinghacking-toolsbashshellreconautomation
  Language:Shell 177

• thevillagehacker / Bug-Hunting-Arsenal

  The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down here 👇👇

  xss-payloadbug-huntingnaughty-stringsxxe-payloadspentest-masterreconcontent-discoverygoogle-dork
  Language:Shell 171
• Android-Pentesting

  Rupeesh-Patil / Android-Pentesting

  Android Pentesting Zone

  android-pentestingandroidbug-huntingpenetration-testingmobile-app
  166

• bhavesh-pardhi / Wordlist-Hub

  Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utilized by bug hunters, penetration testers, and security enthusiasts during their reconnaissance and vulnerability assessment processes.

  brute-forcebug-huntingcybersecurityethical-hackingsecuritywebapplicationhackingwebapplicationsecuritywebsecuritywordlistallwordlistsbugbounty-wordlist
  132

• hardenedlinux / harbian-qa

  Bug hunting through fuzzer/*-sanitizer/etc...

  bug-huntingcommunity-qa
  Language:Roff 129

• IamLucif3r / Bug-Hunting

  A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

  bugbountybugbug-bountybugreportbug-huntingbug-reportingbug-bounty-huntersbug-bounty-tipsbug-bounty-reconnaissancemethodologies
  123
• xray

  patois / xray

  Hexrays decompiler plugin that colorizes and filters the decompiler's output based on regular expressions

  hexraysdecompilerpluginidaidapythonfilterregular-expressionmalware-analysisbug-huntingida-prohighlight
  Language:Python 115

• tigthor / neural-network-hacking

  Hacking the Singularity. Deep learning hacking. Weaponizing AI in Offensive security

  aimachine-learninghackingbugbountyautomationneural-networkneural-networksvulnerability-scannerbug-hunting
  Language:Python 90

• BugBountyResources / Resources

  A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

  bugbountysecurity-toolssecurity-vulnerabilitysecuritysecurity-testingsecurity-auditresourcesinfosecinfosec-referencehackingpenetration-testingpentestingbug-huntingmethodology
  88
• lazyGrandma

  AhmedConstant / lazyGrandma

  a shell script aim to automatically launch 50+ online web scanning tools in the Browsaer against a target domain in a 10 waves

  sellbashinformation-gatheringreconnaissancebug-huntingsubdomain-enumerationgoogle-dorksgithub-dorkshttp-headersweb-application-securityweb-application-security-scanner
  Language:Shell 61

• HightechSec / scarce-apache2

  A framework for bug hunting or pentesting targeting websites that have CVE-2021-41773 Vulnerability in public

  cve-2021-41773hacktoberfestpentestingbug-huntingbash-script
  Language:Shell 61

• gilts / wsee

  A CDN Domain Fronting Tool or Websocket Discovery written in Python

  cloudflarecloudflare-checkercloudfrontdomain-frontingwebsocketwscdncswshbug-bountybug-hunterbugbountybugbounty-toolbughuntingbug-huntersbug-huntingbugbounty-toolsh2h2creverse-proxyfreenet
  Language:Python 51

• dub-flow / appsec-challenges

  This repo contains the code for my appsec challenges

  appsecbug-huntingethical-hacking
  Language:Java 30
• nimrun-action

  juancarlospaco / nimrun-action

  Nim Bisect commit-by-commit action

  bisectbug-huntingbug-reproductionbug-trackerbug-tracking-systemgit-bisectnimnim-langnim-languagenimlang
  Language:JavaScript 25

• 0xffsec / webdojo

  A learning and testing environment for web application hacking and pentesting.

  hackingpentestingpenetration-testingpentesting-toolsinfoseccybersecurityethical-hackinghackervulnerabilitysecuritysecurity-toolsbug-bountybug-huntingoscpowasphacktheboxejptkaliwebapp-securitypentesting-lab
  Language:Shell 22
• Probe

  whoami-anoint / Probe

  Probe: This is a special tool for bug hunter for automated recon process smoothly.

  automationrecon-toolreconnaissancebugbountybug-huntingsubdomain-enumerationpentesting-toolseducational-project
  Language:Python 22

• r00tdaemon / arsenal

  Tools for bug hunting in a container

  securitysecurity-toolsdockerdocker-imagebugbountybug-bountycontainerizepentestingpentest-toolpentesting-toolspentest-toolspentestbug-hunting
  Language:Shell 21

• alyrezo / FindBBP

  Bug Bounty Program Discovery tool, that discovers bug Bounty Program via security.txt file by default and you can use custom dork

  bugbug-bountybug-huntingbugbountybugbounty-toolhackhackerhunting
  Language:Python 16

• lgcarmo / WebHunterScreen

  This program aims to check active targets by saving screenshots in a project.

  bug-bountybug-huntingbugbountycybersecuritypentestingtoolswebcrawlerwebcrawlingpentesstpython3
  Language:Python 12

• poxyran / poxyblog

  poxyran's blog

  bug-huntingexploitinghardware-hackingiotmalware-analysispersonal-websitereverse-engineeringtools
  Language:Python 10

• RashidKhanPathan / CVE-2022-40471

  RCE Exploit and Research

  0daybug-huntingcve-2022-40471exploitexploit-developmentpenetration-testingpythonsecurity-researchvulnerability
  Language:Python 8

• bonifield / scoper

  test a single URL, or a list of URLs, against a Burp Suite-style JSON configuration file to determine scope

  pythonpenetration-testingburpsuitescopenetworkingbug-huntingbug-bountypython3burpjson
  Language:Python 7

• nsonaniya2010 / sanfinder

  It finds Subject Alternative Names for a given list of domains

  securitysecurity-toolsinfosecmadeinindiabugbountybug-bountybug-hunting
  Language:Python 7

• RESETHACKER-COMMUNITY / ReporterX

  Template based report writing tool.

  bugbountybug-huntingbug-reproductionbug-reportingreporterx
  Language:Python 6

• heshamm1 / Jok3r

  "Jok3r" by Hesham (Sh1vv) is a Python script for network reconnaissance and port scanning. It streamlines host discovery on specified subnets and efficient port scans on target IPs. With a user-friendly interface, and customizable port ranges, it's a versatile tool for network exploration, supporting saving scan results.

  bug-huntingenumerationnetworknetwork-analysisnmappenetrationpenetration-testingpenetration-testing-toolsscannerscanningreconnasince
  Language:Python 4

• ReymoRed / platforms-scopes

  platforms-scopes

  bug-bountybug-bounty-toolsbug-hunting
  Language:Python 4

• thebitdoodler / BugBaazi

  This is all in respository full of free resources for Information Security Researchers who want to learn about Bug Hunting🏹🐞

  bug-bountybug-huntingbugbountybugstools
  4

• scriptkkiddie / Responsible_Disclosure_VDP_Bug_Bounty

  A curated list of Public Bug Bounty, Responsible Disclosure, Vulnerability Disclosure Programs sourced from Community & Internet.

  bug-bountybug-bounty-huntingbug-huntingbugbountybugbountytipsscriptkkiddievdpvulnerability-disclosurevulnerability-disclosure-policies
  3