There are 5 repositories under bug-hunting topic.
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
An step by step fuzzing tutorial. A GitHub Security Lab initiative
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
bash scripting thing!
The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down here 👇👇
Android Pentesting Zone
Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utilized by bug hunters, penetration testers, and security enthusiasts during their reconnaissance and vulnerability assessment processes.
A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.
A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Hacking the Singularity. Deep learning hacking. Weaponizing AI in Offensive security
a shell script aim to automatically launch 50+ online web scanning tools in the Browsaer against a target domain in a 10 waves
A framework for bug hunting or pentesting targeting websites that have CVE-2021-41773 Vulnerability in public
This repo contains the code for my appsec challenges
Nim Bisect commit-by-commit action
Probe: This is a special tool for bug hunter for automated recon process smoothly.
Tools for bug hunting in a container
This program aims to check active targets by saving screenshots in a project.
RCE Exploit and Research
It finds Subject Alternative Names for a given list of domains
Template based report writing tool.
"Jok3r" by Hesham (Sh1vv) is a Python script for network reconnaissance and port scanning. It streamlines host discovery on specified subnets and efficient port scans on target IPs. With a user-friendly interface, and customizable port ranges, it's a versatile tool for network exploration, supporting saving scan results.
This is all in respository full of free resources for Information Security Researchers who want to learn about Bug Hunting🏹🐞
A curated list of Public Bug Bounty, Responsible Disclosure, Vulnerability Disclosure Programs sourced from Community & Internet.