Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: bug-bounty-tools

Hashtag-AMIN/hashtag-fuzz

The nightmare of WAFs & CDNs, Use multi tricks for bypass ratelimit of WAFs & CDNs & Webservers.

Language: Python - Size: 5.78 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 10 - Forks: 0

madriztra/Asta-Scanner-V1

AstaScannerV1 is a Python-based web scanning tool 🛠️. It helps you gather info and automate exploits on websites 🌐.

Language: Python - Size: 17.6 KB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 0 - Forks: 0

hueristiq/xurlfind3r

A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.

Language: Go - Size: 375 KB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 596 - Forks: 69

hueristiq/xsubfind3r

A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.

Language: Go - Size: 521 KB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 110 - Forks: 9

gobeecode/dorkmine

Opensource google dork engine with extensive collection of google dorks!

Language: TypeScript - Size: 221 KB - Last synced at: 8 days ago - Pushed at: 15 days ago - Stars: 1 - Forks: 0

hueristiq/xcrawl3r

A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embedded in webpages, parsing resources like sitemaps and robots.txt files, and even processing local files - to uncover every URL.

Language: Go - Size: 204 KB - Last synced at: 14 days ago - Pushed at: 15 days ago - Stars: 96 - Forks: 7

yogsec/Hardware-Hacking-Tools

Lists various tools used in hardware hacking.

Size: 91.8 KB - Last synced at: 12 days ago - Pushed at: 20 days ago - Stars: 25 - Forks: 4

gobeecode/bug-bounty-reports-hackerone

Complete collection of bug bounty reports from Hackerone.

Language: Python - Size: 3.37 MB - Last synced at: 8 days ago - Pushed at: 6 months ago - Stars: 9 - Forks: 1

MaMad4Ever/Bug-Bounty-Tools

A list of resources for those interested in getting started in bug bounties

Size: 201 KB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 4 - Forks: 1

yogsec/Hacking-Tools

A curated list of penetration testing and ethical hacking tools, organized by category. This compilation includes tools from Kali Linux and other notable sources.

Size: 136 KB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 404 - Forks: 86

yogsec/Web-History-Analysis

Web History Analysis is an advanced tool for classifying and categorizing URLs from browser history logs using machine learning techniques.

Language: Python - Size: 339 KB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 3 - Forks: 0

yogsec/endpoints-extractor

A powerful Bash script for extracting URLs and API endpoints from HTML, JavaScript, and JSON content of web pages. Designed for security researchers, bug bounty hunters, and developers to streamline endpoint discovery. Simple to use, supports single or multiple URLs, and offers file-saving capabilities.

Language: Shell - Size: 81.1 KB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 12 - Forks: 1

yogsec/Malicious-Website-Demo

Malicious-Website-Demo is a cybersecurity demonstration project that simulates common web vulnerabilities in a controlled environment. Built with a red danger-themed design, this website showcases scenarios like malicious redirects and landing pages to educate researchers and enthusiasts about online threats.

Language: HTML - Size: 161 KB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 0 - Forks: 0

yogsec/DorkTerm

DorkTerm is a terminal-themed web-based security tool designed to assist security researchers in performing Google Dork queries efficiently. The tool generates multiple Google Dork search queries for a given domain and opens them in new browser tabs to help identify potential vulnerabilities.

Language: HTML - Size: 157 KB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 12 - Forks: 1

yogsec/GetSubDomains

GetSubDomains is a fast and efficient Bash tool for retrieving subdomains of a given domain using the crt.sh certificate transparency logs. This tool is useful for security researchers, penetration testers, and bug bounty hunters to quickly enumerate subdomains with minimal overhead.

Language: Shell - Size: 5.56 MB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 2 - Forks: 0

yogsec/Social-Engineering-Tools

A powerful collection of tools designed for social engineering research, penetration testing, and security awareness training. These tools help security researchers understand human manipulation tactics and improve defense mechanisms.

Size: 47.9 KB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 50 - Forks: 6

AnLoMinus/Bug-Bounty

Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More

Language: Shell - Size: 228 KB - Last synced at: 15 days ago - Pushed at: over 2 years ago - Stars: 415 - Forks: 85

gigachad80/grep-backURLs

Automated way to extract juicy info with subfinder and waybackurls

Language: Go - Size: 59.6 KB - Last synced at: 24 days ago - Pushed at: 24 days ago - Stars: 31 - Forks: 3

umutcamliyurt/Subhunter

A fast subdomain takeover tool

Language: Go - Size: 20.5 KB - Last synced at: 18 days ago - Pushed at: over 1 year ago - Stars: 75 - Forks: 22

deibidariel94/Hardware-Hacking-Tools

Lists various tools used in hardware hacking.

Size: 0 Bytes - Last synced at: 30 days ago - Pushed at: 30 days ago - Stars: 0 - Forks: 0

yogsec/Digital-Forensics-Tools

A curated list of essential digital forensics tools used for investigation, data recovery, and security analysis. These tools help in disk forensics, memory analysis, network monitoring, malware analysis, and more.

Size: 96.7 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1 - Forks: 0

Aviksaikat/Bug-bounty-essentials

All the tools you need for webapp pentesting & bug bouty hunting

Language: Shell - Size: 11.7 KB - Last synced at: 9 days ago - Pushed at: over 1 year ago - Stars: 4 - Forks: 1

web-cipher-007/Recon-Engine Fork of freelancermijan/reconengine

Powerful Recon Engines Hub

Language: HTML - Size: 220 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

paulveillard/cybersecurity-bug-bounty

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Bug Bounty in Cybersecurity.

Language: Shell - Size: 160 KB - Last synced at: 11 days ago - Pushed at: almost 3 years ago - Stars: 40 - Forks: 11

yogsec/URL_Extractor

URL Extractor | Designed By YogSec is a powerful Bash script that helps you extract URLs from a single file or all files inside a folder

Language: Shell - Size: 954 KB - Last synced at: about 1 month ago - Pushed at: about 2 months ago - Stars: 5 - Forks: 2

pr0xh4ck/web-recon

All About Web Recon & OSINT

Size: 256 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 114 - Forks: 18

topscoder/domainer

Domainer is a Go script that allows you to extract the root domains from a list of domains based on the ARPANET RFC's for (top-level) domains (TLDs). It removes the scheme (if present) from the input domains and extracts the last label before the TLD to produce the root domain. The extracted root domains are then printed as output.

Language: Go - Size: 39.1 KB - Last synced at: 18 days ago - Pushed at: 11 months ago - Stars: 1 - Forks: 0

JeninSutradhar/bug-bounty-command-arsenal

A comprehensive collection of 100 essential commands for ethical hacking and bug bounty hunting. This arsenal covers various aspects of security testing, including domain enumeration, vulnerability scanning, and more.

Language: HTML - Size: 93.8 KB - Last synced at: 18 days ago - Pushed at: 2 months ago - Stars: 3 - Forks: 0

yogsec/HACKING-BOT

HACKING BOT is an automated bug bounty tool that streamlines security testing by running multiple cybersecurity tools in parallel. It allows you to customize the tools list and automate reconnaissance, scanning, exploitation, and post-exploitation analysis.

Language: Python - Size: 308 KB - Last synced at: about 2 months ago - Pushed at: 2 months ago - Stars: 4 - Forks: 3

MaMad4Ever/Next-Dork

Useful Google Dorks for Bug Bounty

Language: JavaScript - Size: 252 KB - Last synced at: 25 days ago - Pushed at: 4 months ago - Stars: 1 - Forks: 0

topscoder/oldhost

oldhost is a tool for bug bounty hunters to discover old hosts that are no longer available, but might still be present on different known and related servers.

Language: Go - Size: 10.7 KB - Last synced at: 18 days ago - Pushed at: almost 2 years ago - Stars: 5 - Forks: 2

n0kovo/random-agent

Simply output a random user-agent. Use it with tools that don't have a --random-agent flag. Like `random-agent` or $(random-agent)

Language: Go - Size: 1.37 MB - Last synced at: 2 months ago - Pushed at: over 1 year ago - Stars: 3 - Forks: 0

IAmMaheshTodkar/inforeconX

InfoRecon is a cybersecurity tool for gathering, analyzing, and reporting data from various sources, ideal for auditing and threat intelligence.

Language: Python - Size: 0 Bytes - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

DEMON1A/Walker

Walker is a Go-based tool designed to help identify secrets within binary files

Language: Go - Size: 18.6 KB - Last synced at: 19 days ago - Pushed at: 7 months ago - Stars: 1 - Forks: 1

BLACK-BUG-HKRS/XAT

XXE Attack Tool

Language: Go - Size: 33.2 KB - Last synced at: 3 months ago - Pushed at: about 2 years ago - Stars: 3 - Forks: 1

UsamaAli-PK/BugBounty-Tools

Bug Bounty Tool List Which are useful for Bug Hunting , Ethical Hacking & CyberSecurity

Size: 75.2 KB - Last synced at: about 2 months ago - Pushed at: 11 months ago - Stars: 1 - Forks: 0

Vigil5153/Directory-Brute-Forcer

A simple Python script for brute-forcing directories using a wordlist.

Language: Python - Size: 3.91 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0

richardschwabe/JSFinder2

Find subdomains and urls in Javascript files

Language: Python - Size: 30.3 KB - Last synced at: 13 days ago - Pushed at: over 1 year ago - Stars: 4 - Forks: 0

Qyfashae/Bug_Bounty_Scripts

My private bug bounty scripts i have written under the years for real time projects within bug bounty hunting and penetration testing(red team).

Language: JavaScript - Size: 12.7 KB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 2 - Forks: 0

LiterallyEthical/r3conwhal3

r3conwhale aims to develop a multifunctional recon chain for web applications, intelligently interpreting collected data, and optimizing performance and resource consumption through a concurrency-based approach.

Language: Go - Size: 2.87 MB - Last synced at: 10 months ago - Pushed at: 11 months ago - Stars: 7 - Forks: 0

DarkSuite/DarkScout

DarkScout is a simple, nimble subdomain enumeration tool written in Rust language. It is designed to help bug bounty hunters, security professionals and penetration testers discover subdomains of a given target domain.

Language: Rust - Size: 18.6 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 2 - Forks: 0

1hehaq/Oros

Takedown your next target subdomain using Oros 🐺

Language: Python - Size: 23.4 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0

DotNetRussell/Ensemble

A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting to scan multiple bug bounty programs simultaneously, on a recurring basis.

Language: Python - Size: 8.16 MB - Last synced at: 12 months ago - Pushed at: 12 months ago - Stars: 42 - Forks: 5

kljunowsky/XXElixir

This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.

Language: Python - Size: 44.9 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 53 - Forks: 5

DrW3b/secfinder

This script is designed to identify and extract potential sensitive information from the source code of given URLs. It employs regular expressions to search for patterns associated with various types of sensitive data, including API keys, access tokens, and private keys.

Language: Python - Size: 0 Bytes - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

topscoder/analyticsrelationships Fork of Josue87/AnalyticsRelationships

Get related domains / subdomains by looking at Google Analytics IDs

Language: Go - Size: 36.1 KB - Last synced at: over 1 year ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 1

karrni/sparrot

Discover related domains using Whois data from whoxy.com

Language: Python - Size: 64.5 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 2 - Forks: 0

LiveGray/subscout

subscout is a simple, nimble subdomain enumeration tool written in Rust language. It is designed to help bug bounty hunters, security professionals and penetration testers discover subdomains of a given target domain.

Language: Rust - Size: 35.2 KB - Last synced at: almost 2 years ago - Pushed at: about 2 years ago - Stars: 6 - Forks: 0

fooster1337/google-dorking

Automatic Google Dorker And Support Proxy

Language: Python - Size: 5.86 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0

ropwareJB/jwtfuzz

Library for fuzzing & attacking JSON Web Tokens (JWTs). Bindings for other languages included.

Language: Haskell - Size: 53.7 KB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 4 - Forks: 0

Related Keywords
bug-bounty-tools 50 bug-bounty 25 bugbounty 23 cybersecurity 14 hacking 12 penetration-testing 11 osint 11 security-tools 9 hacking-tools 8 penetration-testing-tools 8 security 7 cyber-security 7 yogsec 7 subdomain-enumeration 7 pentesting 6 hacking-tool 6 hackers 6 cybersecurity-tools 6 reconnaissance 6 golang 6 bug-bounty-hunting 5 go 5 pentesting-tools 5 ethical-hacking 4 ethical-hacking-tools 4 infosec 4 web-security 4 osint-tools 4 red-team-tools 4 red-teaming 4 bugbounty-tool 3 subdomain-scanner 3 fuzzing 3 linux 3 scanning 3 subfinder 3 python 3 recon 2 wayback-machine 2 red-team 2 waybackurls 2 kali-linux 2 exploit 2 pentest-tool 2 discovered-subdomains 2 subdomain-takeover 2 rust 2 bug 2 bug-bounty-recon 2 digital-forensics 2 forensics 2 python3 2 bugbountytools 2 hack 2 xxe-attack 2 xxe 2 url-finder 2 mitre 2 tools 2 owasp 2 redteam 2 redteam-tools 2 web 2 pentest 2 contentdiscovery 2 red-teaming-tools 2 google-dorks 2 crawler 2 hacker 2 rust-hacking 2 rust-subdomain-enumeration 2 rust-tools 2 google 1 subscout 1 tips-and-tricks 1 webpentesting 1 domain 1 root-domain 1 tld 1 command-line 1 ai-hacking 1 automation 1 reverse-dns 1 hacking-bot 1 dns-enumeration 1 hackingsoftwares 1 hackingtools 1 analytics 1 darkscout 1 appsec 1 walker 1 offensive-rust 1 bug-bounty-reconnaissance 1 information-gathering 1 bounty 1 bug-bounty-automation 1 find-urls 1 gau 1 getallurls 1 hack-tools 1