bughunting

There are 8 repositories under bughunting topic.

devanshbatham / Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
bugbounty bugbounty-blogs bugbounty-facebook bugbounty-writeups bugbounty-yahoo bugbountytips bughunting bughunting-methodology bughunting-writeups security-writeups
Language:Python 4649
devanshbatham / FavFreak
Making Favicon.ico based Recon Great again !
bugbounty bughunting hacking information-gathering osint recon reconnaissance web-security webappsec
Language:Python 1112
tenable / routeros
RouterOS Security Research Tooling and Proof of Concepts
poc routeros bughunting honeypot scanner exploits
Language:C++ 862
redhuntlabs / BucketLoot
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
automation blackhat bounty bugbounty bughunting cli cloud cloud-security cybersecurity infosec infosectools osint pentesting recon reconnaissance s3 secret-scanning
Language:Go 371
renatahodovan / grammarinator
ANTLR v4 grammar-based test generator
antlr4 bughunting fuzzer fuzzing grammar-based-testing hacktoberfest random-testing security test-automation
Language:Python 340
HightechSec / git-scanner
A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
hacking-tools bash git-dumper pentesting pentest-tool security-audit bughunting
Language:Shell 336
seeu-inspace / easyg
Here I gather all the resources about hacking that I find interesting
automation penetration-testing bughunting red-teaming
Language:Ruby 266
thehackingsage / bughunter
Tools for BugHunting
bugbounty bughunting discovery exploitation information-gathering mapping penetration-testing poc reporting tools
Language:Python 203
danilabs / tools-tbhm
Tools of "The Bug Hunters Methodology V2 by @jhaddix"
bugbounty bughunting security security-tools
Language:Shell 194
renatahodovan / fuzzinator
Fuzzinator Random Testing Framework
fuzzing-framework fuzzing security random-testing bughunting test-automation hacktoberfest
Language:Python 189
devanshbatham / ArchiveFuzz
Hunt down the secrets from the WebArchives for Fun and Profit
web-archive subdomain-scanner subdomain-enumeration osint email-enumeration bughunting security-tools
Language:Python 165
R0X4R / D4rkXSS
A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
bugbounty bughunter bughunting ethical-hacking hacking javascript xss-exploitation xss-filter xss-vulnerability
163
justakazh / DockerExploit
Docker Remote API Scanner and Exploit
bugbounty bughunter bughunting cybersecurity docker pentesting scanner security tools 2375 exploit massive
Language:Python 152
xer0times / SQLi-Query-Tampering
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
bug-bounty bugbounty bughunting burp-extensions burp-plugin burpsuite burpsuite-pro evasion payload-generator pentesting pentesting-tools sqli sqlinjection
Language:Python 150
Anon-Artist / R3C0Nizer
R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.
recon pentesting webapplicationhacking bugbounty bugbounty-tool bughunting scanner-web scripting reconnaissance bash-scripting scans cli workflow
Language:Shell 147
xer0times / BugBounty
Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
bugbounty burpsuite burp-extensions bug-bounty web-application bughunting bughunting-methodology burpsuite-extender burpsuite-pro bounty-hunters netsparker zaproxy
Language:BitBake 144
YasserGersy / cazador_unr
Hacking tools
automation bugbounty bugcrowd bughunting csrf directory-lister dns fuzzing hackerone hacking http information-gathering-tools owasp poc pocgenerator rce sqli subdomains tcp xss
140
devanshbatham / CertEagle
Weaponizing Live CT logs for automated monitoring of assets
reconnaissance bughunting subdomain-enumeration subdomain-finder cybersecurity osint ssl-certificates asset-monitoring subdomain-monitor
Language:Python 132
joshkar / X-Recon
A utility for detecting webpage inputs and conducting XSS scans.
bugbounty bughunting hunt xss xss-scanner xssscan
Language:Python 124
h0tak88r / Sec-88
Cyber Security Notes, Methodology, Resources and Tips
bugbounty bughunting methodology penetration-testing security security-testing how-to-hack hackerone-reports writeups appsec bugbountytips websecurity
112
tamimhasan404 / FFUF-Tips-And-Tricks
Describe how to use ffuf different options with examples
bugbounty bughunting dirbrute ffuf penetration-testing recon tips tools
75
fergarrui / custom-bytecode-analyzer
Java bytecode analyzer customizable via JSON rules
bytecode analyzer java security bughunting json callgraph analysis static-analysis
Language:Java 74
tamimhasan404 / Chart-Of-Wordlist
Chart-Of-Wordlist helps to create your own custom wordlist. Also in one repository, you can find a list of awesome wordlist.
brute-force bugbounty bughunting linux penetration-testing recon wordlist
59
gilts / wsee
A CDN Domain Fronting Tool or Websocket Discovery written in Python
cloudflare cloudflare-checker cloudfront domain-fronting websocket ws cdn cswsh bug-bounty bug-hunter bugbounty bugbounty-tool bughunting bug-hunters bug-hunting bugbounty-tools h2 h2c reverse-proxy freenet
Language:Python 53
thecyberworld / hackliner
Hackliner: Cybersec/Bughunting Oneliners
bash bash-script bugbounty bugbounty-tool bugbountyhunting bughunting bughunting-methodology cybersecurity oneliner oneliner-commands oneliners sqli xss awesome-oneliner-bugbounty cybersec-onliner
51
DreyAnd / DeadDNS
DNS hijacking via dead records automation tool
bughunting bugbounty bugbounty-tool bugbountytips
Language:Python 49
cyinnove / subfalcon
subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains. It fetches subdomains from various sources [crtsh, hackertargetapi, anubis, alienvault, rappiddns, urlscan ] , saves them to a SQLite database, and can notify updates via Discord.
appsec bughunting go golang penetration-testing-tools recon reconnaissance subdomains-enumeration webscrapping
Language:Go 37
hackarwiki / bughunting-ar
هذا المستودع هي محاولة منا لاثراء المحتوي العربي بخصوص البج بونتي ومايحتويه من انواع ثغرات الي تقنيات مختلفة الي مصادر متعددة
bugbounty bughunting arabic arabic-language cybersecurity penetration-testing
Language:HTML 37
nabasteh / Intro-To-Bug-Hunting
I provide educational resources in this repository for starting bug hunting from scratch. The content will be updated over time! Also, I would be happy if you introduce new resources to be added
bug-bounty bugbounty bughunting bughunting-methodology bughunting-tools bughunting-writeups js nodejs php python ruby tools vulnerability webapp webhacking
32
iamunixtz / ParamWizard
ParamWizard is a powerful Python-based tool designed for extracting and identifying URLs with parameters from a specified website. It provides a comprehensive way to discover hidden parameters within a web application by crawling and analyzing the URLs of the domain.
bughunting bughunting-tools parameter-crwaling paramspider-alternative paramwizard web web-urls-crwal weburl weburls
Language:Python 27
OWASP-BLT / BLT-Flutter
The official OWASP BLT App repository/ Heist 'em bugs!
bughunting flutter hacktoberfest owasp social
Language:Dart 22
tamimhasan404 / Google-Dorks
Speed-up your hunting with google dorks🚀🚀
bughunting tips-and-tricks recon
22
DarkCodeOrg / welcome-to-cybersecurity
this is an guide for people aspiring to enter the world of cybersecurity
bughunting hacking pentest-books pentest-scripts pentesting
21
gokulapap / bugdork
An Bug Hunters tool to find many Vulnerabilities using Google dorks
vulnerability bughunting google-dorks python3
Language:Python 18
knassar702 / pmg
Extract parameters/paths from urls
bughunting bugbounty bugbounty-tool regex python security
Language:Python 17
sweetchipsw / Sweetmon_legacy
'SWEETMON' is a fuzzer monitoring service based python3 + django. User can check their fuzzers and crashes on the web. It can reduce repetitive work for fuzz testers. This is a legacy sweetmon. The new sweetmon is now being developed https://github.com/sweetchipsw/sweetmon2
bughunting exploit fuzzer fuzzing sweetchip sweetmon vulnerability
Language:CSS 17

bughunting

devanshbatham / Awesome-Bugbounty-Writeups

devanshbatham / FavFreak

tenable / routeros

redhuntlabs / BucketLoot

renatahodovan / grammarinator

HightechSec / git-scanner

seeu-inspace / easyg

thehackingsage / bughunter

danilabs / tools-tbhm

renatahodovan / fuzzinator

devanshbatham / ArchiveFuzz

R0X4R / D4rkXSS

justakazh / DockerExploit

xer0times / SQLi-Query-Tampering

Anon-Artist / R3C0Nizer

xer0times / BugBounty

YasserGersy / cazador_unr

devanshbatham / CertEagle

joshkar / X-Recon

h0tak88r / Sec-88

tamimhasan404 / FFUF-Tips-And-Tricks

fergarrui / custom-bytecode-analyzer

tamimhasan404 / Chart-Of-Wordlist

gilts / wsee

thecyberworld / hackliner

DreyAnd / DeadDNS

cyinnove / subfalcon

hackarwiki / bughunting-ar

nabasteh / Intro-To-Bug-Hunting

iamunixtz / ParamWizard

OWASP-BLT / BLT-Flutter

tamimhasan404 / Google-Dorks

DarkCodeOrg / welcome-to-cybersecurity

gokulapap / bugdork

knassar702 / pmg

sweetchipsw / Sweetmon_legacy