bughunting
There are 7 repositories under bughunting topic.
devanshbatham / Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
Language:Python 4415Making Favicon.ico based Recon Great again !
Language:Python 1074- Language:C++ 847
redhuntlabs / BucketLoot
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
Language:Go 345HightechSec / git-scanner
A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
Language:Shell 331renatahodovan / grammarinator
ANTLR v4 grammar-based test generator
Language:Python 329seeu-inspace / easyg
Here I gather all the resources about hacking that I find interesting
Language:Ruby 261danilabs / tools-tbhm
Tools of "The Bug Hunters Methodology V2 by @jhaddix"
Language:Shell 192Fuzzinator Random Testing Framework
Language:Python 186thehackingsage / bughunter
Tools for BugHunting
Language:Python 186Hunt down the secrets from the WebArchives for Fun and Profit
Language:Python 162justakazh / DockerExploit
Docker Remote API Scanner and Exploit
Language:Python 147xer0times / SQLi-Query-Tampering
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
Language:Python 147Anon-Artist / R3C0Nizer
R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.
Language:Shell 145- Language:BitBake 145
YasserGersy / cazador_unr
Hacking tools
Weaponizing Live CT logs for automated monitoring of assets
Language:Python 131fergarrui / custom-bytecode-analyzer
Java bytecode analyzer customizable via JSON rules
Language:Java 69tamimhasan404 / FFUF-Tips-And-Tricks
Describe how to use ffuf different options with examples
Chart-Of-Wordlist helps to create your own custom wordlist. Also in one repository, you can find a list of awesome wordlist.
- Language:Python 51
- Language:Python 49
thecyberworld / hackliner
Hackliner: Cybersec/Bughunting Oneliners
- Language:Python 42
hackarwiki / bughunting-ar
هذا المستودع هي محاولة منا لاثراء المحتوي العربي بخصوص البج بونتي ومايحتويه من انواع ثغرات الي تقنيات مختلفة الي مصادر متعددة
Language:HTML 38h0tak88r / subfalcon
subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains. It fetches subdomains from various sources [crtsh, hackertargetapi, anubis, alienvault, rappiddns, urlscan ] , saves them to a SQLite database, and can notify updates via Discord.
Language:Go 34nabasteh / Intro-To-Bug-Hunting
I provide educational resources in this repository for starting bug hunting from scratch. The content will be updated over time! Also, I would be happy if you introduce new resources to be added
OWASP-BLT / BLT-Flutter
The official OWASP BLT App repository/ Heist 'em bugs!
Language:Dart 21- Language:Python 18
knassar702 / pmg
Extract parameters/paths from urls
Language:Python 18DarkCodeOrg / welcome-to-cybersecurity
this is an guide for people aspiring to enter the world of cybersecurity
sweetchipsw / Sweetmon_legacy
'SWEETMON' is a fuzzer monitoring service based python3 + django. User can check their fuzzers and crashes on the web. It can reduce repetitive work for fuzz testers. This is a legacy sweetmon. The new sweetmon is now being developed https://github.com/sweetchipsw/sweetmon2
Language:CSS 17Hunt3r0x / zWATCHER
"zwatcher is a lightweight bash script for monitoring sub/domains or a list of sub/domains and javascript files. It compares HTTP status codes and content length to detect changes and notifies the user when any modifications occur. Easily keep track of your domains' health and security with zwatcher."
Language:Shell 16
