GitHub topics: bug-hunting

Repositories

skerkour/black-hat-rust

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Language: Rust - Size: 2.07 MB - Last synced at: 1 day ago - Pushed at: about 1 year ago - Stars: 4,123 - Forks: 414

edoardottt/missing-cve-nuclei-templates

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

Language: Shell - Size: 16.9 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 404 - Forks: 46

tigthor/neural-network-hacking

Hacking the Singularity. Deep learning hacking. Weaponizing AI in Offensive security

Language: Python - Size: 20.2 MB - Last synced at: 5 days ago - Pushed at: about 1 year ago - Stars: 102 - Forks: 26

nmggithub/wts

Watch This Space: A security research blog.

Language: HTML - Size: 978 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 3 - Forks: 2

0xapt/awesome-bbht

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Language: Shell - Size: 274 KB - Last synced at: 9 days ago - Pushed at: over 3 years ago - Stars: 568 - Forks: 105

gigachad80/S3-Bucket-Enum-Nuclei-Template

Multi-region AWS S3 bucket scanner with sensitive file detection

Size: 24.4 KB - Last synced at: 18 days ago - Pushed at: 18 days ago - Stars: 0 - Forks: 0

dub-flow/secure-code-review-challenges

This repo contains the code for my secure code review challenges

Language: Java - Size: 113 KB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 156 - Forks: 43

thevillagehacker/Bug-Hunting-Arsenal

The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down here 👇👇

Language: Shell - Size: 65.2 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 198 - Forks: 80

khadafigans/BugHunter-Recon-Suite

Language: Python - Size: 7.81 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

bonifield/IPv4Mutate

performs various mutations on IPv4 addresses, such as converting to binary, hex, octal, urlencoded, and more

Language: Python - Size: 10.7 KB - Last synced at: about 1 month ago - Pushed at: over 3 years ago - Stars: 2 - Forks: 0

ERO-HACK/BugHunter

A powerful bug hunting tool to detect XSS, SQLi, LFI, and Open Redirect vulnerabilities in web applications.

Language: Python - Size: 23.4 KB - Last synced at: 29 days ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 1

AidenNabavi/OWASP_Testing_Guide_v3

Framework for effective web app security testing.

Size: 3.95 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0

ScriptSentry is an advanced JavaScript security scanner designed to detect exposed secrets, vulnerabilities, and sensitive data in JavaScript files. It automatically crawls websites to discover JS files and scans them

Language: Python - Size: 631 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0

gigachad80/Checklist

The only bug hunting checklist you need

Size: 133 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0

DevHackz/Android-Pentesting

Android Bug Hunting

Size: 37.3 MB - Last synced at: about 2 months ago - Pushed at: about 1 year ago - Stars: 200 - Forks: 31

chengxiaqiucao/TestMyBookshelf

提供测试新手练习测试技能的项目，项目模拟敏捷sprint开发节奏，每个sprint均包含若干已知bug，开始探索吧~~

Size: 19.5 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

SujalMeghwal/JSpy

This script performs reconnaissance on a list of domains. It creates directories for storing output, extracts headers and response bodies from each domain, extracts script endpoints and downloads scripts, extracts relative URLs from scripts, and runs nmap scans on each domain.

Language: Shell - Size: 51.8 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 0

bonifield/RequestInjector

scan a URL using a given wordlist with optional URL transformations

Language: Python - Size: 46.9 KB - Last synced at: 18 days ago - Pushed at: almost 4 years ago - Stars: 4 - Forks: 0

hardenedlinux/harbian-qa

Bug hunting through fuzzer/*-sanitizer/etc...

Language: Roff - Size: 51.3 MB - Last synced at: about 2 months ago - Pushed at: over 4 years ago - Stars: 134 - Forks: 20

IamLucif3r/Bug-Hunting

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

Size: 15.7 MB - Last synced at: 4 months ago - Pushed at: about 4 years ago - Stars: 155 - Forks: 31

abisecops/Probe

Probe: This is a special tool for bug hunter for automated recon process smoothly.

Language: Python - Size: 19.4 MB - Last synced at: 5 days ago - Pushed at: over 1 year ago - Stars: 23 - Forks: 5

Bhanunamikaze/Xeref

One solution for all bug bounty passive & active unauthenticated reconnaissance

Language: Python - Size: 37.1 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 1

lgcarmo/WebHunterScreen

This program aims to check active targets by saving screenshots in a project.

Language: Python - Size: 5.57 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 13 - Forks: 0

hackingguy/Bug-Hunting-Colab 📦

A Colab For Bug Hunting!

Language: Jupyter Notebook - Size: 1.66 MB - Last synced at: about 2 months ago - Pushed at: about 4 years ago - Stars: 205 - Forks: 89

AramayisY/dnsdigger

DNSDigger is a powerful domain reconnaissance tool that automates DNS lookups, ASN retrieval, CIDR resolution, IP range extraction, and reverse DNS lookups—streamlining domain intelligence gathering in one script.

Language: Shell - Size: 11.7 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

antonio-morales/Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Size: 7.99 MB - Last synced at: 5 months ago - Pushed at: over 1 year ago - Stars: 3,419 - Forks: 365

patois/abyss

abyss - augmentation of Hexrays decompiler output

Language: Python - Size: 571 KB - Last synced at: 6 months ago - Pushed at: almost 3 years ago - Stars: 340 - Forks: 29

patois/xray

Hexrays decompiler plugin that colorizes and filters the decompiler's output based on regular expressions

Language: Python - Size: 2.49 MB - Last synced at: 6 months ago - Pushed at: over 1 year ago - Stars: 130 - Forks: 11

QALeonardoPM/AprendizadoQA

📚 AprendizadoQA Repositório dedicado ao meu aprendizado contínuo na área de Qualidade de Software (QA). Aqui compartilho materiais de estudo, anotações, exercícios e referências sobre testes de software, automação e certificações.

Size: 8.44 MB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0

kleiton0x00/XSScope

XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.

Language: HTML - Size: 504 KB - Last synced at: 6 months ago - Pushed at: over 3 years ago - Stars: 313 - Forks: 79

HightechSec/scarce-apache2

A framework for bug hunting or pentesting targeting websites that have CVE-2021-41773 Vulnerability in public

Language: Shell - Size: 490 KB - Last synced at: about 2 months ago - Pushed at: almost 4 years ago - Stars: 63 - Forks: 18

BlueWhaleSec/Bug-Bounty-Methodology-2025

Bug Bounty Methodology 2025. This is the collection of all the bug bounty methodologies resources created by the respective hackers & security researchers

Size: 2.93 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 1 - Forks: 0

juancarlospaco/nimrun-action

Nim Bisect commit-by-commit action

Language: JavaScript - Size: 2.03 MB - Last synced at: 5 days ago - Pushed at: 7 months ago - Stars: 27 - Forks: 0

Jenderal92/reverse-ip-new-api

This tool is used to perform reverse IP lookups— searching for all domains hosted on one IP address.

Language: Python - Size: 5.86 KB - Last synced at: 5 months ago - Pushed at: 9 months ago - Stars: 3 - Forks: 0

sunriseXu/code-audit-search

Save and resume your search history during code audit

Language: TypeScript - Size: 1.1 MB - Last synced at: 5 months ago - Pushed at: 9 months ago - Stars: 0 - Forks: 0

ThatSINEWAVE/ThatSINEWAVE

Config files for my GitHub profile.

Size: 92.8 KB - Last synced at: 26 days ago - Pushed at: over 1 year ago - Stars: 3 - Forks: 0

heshamm1/Jok3r

"Jok3r" by Hesham (Sh1vv) is a Python script for network reconnaissance and port scanning. It streamlines host discovery on specified subnets and efficient port scans on target IPs. With a user-friendly interface, and customizable port ranges, it's a versatile tool for network exploration, supporting saving scan results.

Language: Python - Size: 82 KB - Last synced at: 10 months ago - Pushed at: 10 months ago - Stars: 4 - Forks: 1

bing0o/bash_scripting

bash scripting thing!

Language: Shell - Size: 150 KB - Last synced at: 10 months ago - Pushed at: almost 2 years ago - Stars: 181 - Forks: 64

R4GN4R0K-SEC/Sub-Ringan-Framework Fork of DevVj-1/Sub-Ringan-Framework

Tool for automate bug hunting process 🔍 --> 🍭

Language: Shell - Size: 19.2 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

Language: Python - Size: 5.86 KB - Last synced at: 5 months ago - Pushed at: about 4 years ago - Stars: 8 - Forks: 1

RESETHACKER-COMMUNITY/ReporterX

Template based report writing tool.

Language: Python - Size: 65.4 KB - Last synced at: 7 days ago - Pushed at: over 2 years ago - Stars: 6 - Forks: 1

bhavesh-pardhi/Wordlist-Hub

Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utilized by bug hunters, penetration testers, and security enthusiasts during their reconnaissance and vulnerability assessment processes.

Size: 10.7 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 133 - Forks: 14

0xffsec/handbook

A living document for penetration testing and offensive security.

Language: HTML - Size: 4.69 MB - Last synced at: over 1 year ago - Pushed at: about 2 years ago - Stars: 252 - Forks: 35

SkypLabs/blog.skyplabs.net 📦

Personal blog about IT, electronics, InfoSec, hacking, bug hunting... (No more maintained - New repository available at https://github.com/SkypLabs/personal-blog)

Language: SCSS - Size: 69.2 MB - Last synced at: over 1 year ago - Pushed at: about 4 years ago - Stars: 2 - Forks: 3

whoami-anoint/webredirection

Payloads from BB reports for Open Redirect.

Language: Shell - Size: 13.7 KB - Last synced at: over 1 year ago - Pushed at: about 3 years ago - Stars: 1 - Forks: 0

0xffsec/webdojo

A learning and testing environment for web application hacking and pentesting.

Language: Shell - Size: 92.8 KB - Last synced at: over 1 year ago - Pushed at: over 4 years ago - Stars: 22 - Forks: 5

Alipoodle/bug-search-web 📦

Search for Discord Bug reports online

Language: JavaScript - Size: 101 KB - Last synced at: 9 months ago - Pushed at: over 5 years ago - Stars: 1 - Forks: 1

alyrezo/FindBBP

Bug Bounty Program Discovery tool, that discovers bug Bounty Program via security.txt file by default and you can use custom dork

Language: Python - Size: 188 KB - Last synced at: over 1 year ago - Pushed at: about 3 years ago - Stars: 16 - Forks: 3

dkasak/relative-urls

Extract endpoints from stdin or files.

Language: Python - Size: 6.84 KB - Last synced at: 7 days ago - Pushed at: almost 5 years ago - Stars: 1 - Forks: 1

ReymoRed/platforms-scopes

platforms-scopes

Language: Python - Size: 670 KB - Last synced at: 3 months ago - Pushed at: over 3 years ago - Stars: 4 - Forks: 3

AhmedConstant/lazyGrandma

a shell script aim to automatically launch 50+ online web scanning tools in the Browsaer against a target domain in a 10 waves

Language: Shell - Size: 186 KB - Last synced at: almost 2 years ago - Pushed at: almost 6 years ago - Stars: 58 - Forks: 15

scriptkkiddie/Responsible_Disclosure_VDP_Bug_Bounty

A curated list of Public Bug Bounty, Responsible Disclosure, Vulnerability Disclosure Programs sourced from Community & Internet.

Size: 17.6 KB - Last synced at: over 1 year ago - Pushed at: over 2 years ago - Stars: 3 - Forks: 0

thebitdoodler/BugBaazi

This is all in respository full of free resources for Information Security Researchers who want to learn about Bug Hunting🏹🐞

Size: 21.5 KB - Last synced at: about 2 years ago - Pushed at: over 4 years ago - Stars: 4 - Forks: 1

r00tdaemon/arsenal

Tools for bug hunting in a container

Language: Shell - Size: 27.3 KB - Last synced at: about 2 years ago - Pushed at: about 2 years ago - Stars: 20 - Forks: 6

poxyran/poxyblog

poxyran's blog

Language: Python - Size: 2.56 MB - Last synced at: about 2 years ago - Pushed at: about 5 years ago - Stars: 11 - Forks: 4

gilts/wsee

A CDN Domain Fronting Tool or Websocket Discovery written in Python

Language: Python - Size: 183 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 40 - Forks: 11

bassammaged/lazyGitleaks

Do you interested in finding secrets? Are you depending on gitleaks tool? Do you usually perform large scan scales against different repositories? No worries. lazyGitleaks comes to automate the scan and use a custom .toml template to find the juicy secrets living in repositories

Language: Python - Size: 229 KB - Last synced at: 6 months ago - Pushed at: about 3 years ago - Stars: 3 - Forks: 0

RashidKhanPathan/CVE-2022-40471

RCE Exploit and Research

Language: Python - Size: 13.7 KB - Last synced at: about 2 years ago - Pushed at: almost 3 years ago - Stars: 8 - Forks: 1

Xiddoc/Hacking-Writeups

In-depth explanations for my white-hat finds, bug bounty reports, and vulnerability research. Feel free to contact me for more information.

Size: 44.9 KB - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 2 - Forks: 0

krishpranav/BugHuntingToolKit

This Is A Tool For Bug Hunters in this tool i have included the tools which bug hunters use

Language: Python - Size: 9.4 MB - Last synced at: 5 months ago - Pushed at: almost 5 years ago - Stars: 2 - Forks: 0

rochdiNassah/h1-bot 📦

Language: PHP - Size: 821 KB - Last synced at: over 2 years ago - Pushed at: about 3 years ago - Stars: 0 - Forks: 0

cetfor/fwip 📦

Fun with Improvisational Parsers

Language: JavaScript - Size: 3.84 MB - Last synced at: over 2 years ago - Pushed at: over 6 years ago - Stars: 2 - Forks: 0

Related Keywords

bug-hunting 65 bug-bounty 27 bugbounty 21 pentesting 15 security 14 hacking 12 security-tools 12 penetration-testing 11 python 10 automation 7 cybersecurity 7 ethical-hacking 7 pentesting-tools 7 infosec 6 reconnaissance 6 python3 5 recon 5 xss 4 bugbountytips 4 tools 4 bugbounty-tool 3 hacker 3 penetration-testing-tools 3 malware-analysis 3 pentest 3 owasp 3 bug 3 exploit 2 ejpt 2 hackthebox 2 kali 2 web-application-security 2 bug-bounty-hunting 2 bash 2 enumeration 2 bug-bounty-tools 2 hackerone 2 vulnerabilities 2 json 2 networking 2 webapplicationhacking 2 bug-hunters 2 open-redirect 2 plugin 2 idapython 2 cybersecurity-tools 2 hexrays 2 decompiler 2 secure-coding 2 subdomain-enumeration 2 vulnerability 2 scanner 2 bug-reporting 2 bug-bounty-tips 2 nuclei 2 wordlist 2 nuclei-templates 2 bug-tracking-system 2 bug-reproduction 2 oscp 2 bash-script 2 vulnerability-scanner 2 blog 2 security-research 2 testing 2 hacking-tools 2 software-testing 2 qa 2 webapp-security 1 pts 1 computer-science 1 pentesting-lab 1 url-redirection-vulnerability 1 url-forwarding 1 webapplicationsecurity 1 unvalidated-redirects-and-forwards 1 openredirect-scanner 1 open-redirect-payloads 1 client-side-url-redirection 1 jekyll 1 websecurity 1 electronics 1 bugbounty-wordlist 1 ui-ux-design 1 thatsinewave 1 real-estate-tech 1 property-investment 1 phishing-attacks 1 open-source 1 javascript 1 html 1 github-config 1 game-development 1 digital-marketing 1 config 1 coding-philosophy 1 vscode-extension 1 regex-match 1 rce-scanner 1 code-audit 1