akto-api-security/tests-library

Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities

Size: 282 MB - Last synced: about 10 hours ago - Pushed: 1 day ago - Stars: 30 - Forks: 34

hackermondev/hackerone-tracker

🚀 Track HackerOne reports and leaderboard changes on programs through a Discord webhook

Language: Rust - Size: 348 KB - Last synced: 8 days ago - Pushed: 8 days ago - Stars: 10 - Forks: 1

Hacker0x01/awesome-hacker-api-tools

A collection of hacker tools using HackerOne's API

Size: 23.4 KB - Last synced: 7 days ago - Pushed: over 2 years ago - Stars: 238 - Forks: 44

liamg/hackerone

Go HackerOne API Client

Language: Go - Size: 32.2 KB - Last synced: 13 days ago - Pushed: 13 days ago - Stars: 8 - Forks: 4

screetsec/Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Language: Shell - Size: 96.5 MB - Last synced: 14 days ago - Pushed: 3 months ago - Stars: 1,864 - Forks: 368

Hacker0x01/hacker101

Source code for Hacker101.com - a free online web and mobile security class.

Language: SCSS - Size: 26.1 MB - Last synced: 17 days ago - Pushed: 29 days ago - Stars: 13,615 - Forks: 2,497

BitTheByte/Monitorizer

Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools

Language: Python - Size: 170 MB - Last synced: 16 days ago - Pushed: about 2 months ago - Stars: 248 - Forks: 48

reddelexc/hackerone-reports

Top disclosed reports from HackerOne

Language: Python - Size: 8.79 MB - Last synced: 18 days ago - Pushed: about 1 month ago - Stars: 3,237 - Forks: 626

pdelteil/BugBountyReportTemplates

List of reporting templates I have used since I started doing BBH.

Size: 174 KB - Last synced: 21 days ago - Pushed: 21 days ago - Stars: 217 - Forks: 54

SKVNDR/FastDork

⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" from #HackerOne #Bugcrowd #Intigriti ...

Language: JavaScript - Size: 85.9 KB - Last synced: 9 days ago - Pushed: 6 months ago - Stars: 122 - Forks: 20

pdelteil/HackerOneAPIClient

This project is a bash client to use HackerOne's API.

Language: Shell - Size: 95.7 KB - Last synced: 22 days ago - Pushed: 22 days ago - Stars: 17 - Forks: 2

maddevsio/telegram_bbbot 📦

Telegram Bug Bounty Bot

Language: Go - Size: 2.77 MB - Last synced: 23 days ago - Pushed: over 7 years ago - Stars: 28 - Forks: 6

kitsec-labs/kitsec-core

Ethical hacking, made easy.

Language: Python - Size: 49.6 MB - Last synced: 26 days ago - Pushed: 26 days ago - Stars: 135 - Forks: 7

B3nac/Android-Reports-and-Resources

A big list of Android Hackerone disclosed reports and other resources.

Size: 64.5 KB - Last synced: 26 days ago - Pushed: 26 days ago - Stars: 1,358 - Forks: 295

ItsIgnacioPortal/hacker-scoper

Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.

Language: Go - Size: 1.21 MB - Last synced: 21 days ago - Pushed: about 1 month ago - Stars: 23 - Forks: 3

zricethezav/h1domains

HackerOne "in scope" domains

Language: Python - Size: 117 MB - Last synced: 27 days ago - Pushed: 27 days ago - Stars: 374 - Forks: 111

serain/bbrecon 📦

Python library and CLI for the Bug Bounty Recon API

Language: Python - Size: 355 KB - Last synced: 26 days ago - Pushed: almost 3 years ago - Stars: 216 - Forks: 37

sdushantha/dora

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Language: Python - Size: 2.16 MB - Last synced: 28 days ago - Pushed: 7 months ago - Stars: 299 - Forks: 49

Zarcolio/sitedorks

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

Language: Python - Size: 1.17 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 757 - Forks: 99

testert1ng/hacker101-ctf

Hacker101 CTF Writeup

Language: Python - Size: 8.26 MB - Last synced: 28 days ago - Pushed: almost 2 years ago - Stars: 471 - Forks: 117

AmirhosseinBidokhti/h1reports

A crawler for most recent disclosed reports on Hackerone.

Language: JavaScript - Size: 68.4 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 0 - Forks: 0

YasserGersy/cazador_unr

Hacking tools

Size: 86 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 133 - Forks: 55

arkadiyt/bounty-targets

This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo

Language: Ruby - Size: 311 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 546 - Forks: 106

arkadiyt/bounty-targets-data

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Size: 417 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 2,965 - Forks: 564

heydc7/magnify

A tool for spider multiple URLs & check for sensitive variables in code.

Language: Python - Size: 24.5 MB - Last synced: 28 days ago - Pushed: 8 months ago - Stars: 0 - Forks: 0

samogod/bugradar

Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.

Size: 73.2 KB - Last synced: 9 days ago - Pushed: almost 2 years ago - Stars: 93 - Forks: 17

imusabkhan/bugbounty-writeups

Explore a collection of my insightful Medium writeups covering a variety of topics.

Size: 10.7 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 0 - Forks: 0

imusabkhan/Recon.py

This is a multi-threaded reconnaissance script written in python for bug bounty hunting.

Language: Python - Size: 42 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 0 - Forks: 0

garthhumphreys/cvehound

A Go security vulnerability research tool for searching the CVE Project repository for a particular keyword.

Language: Go - Size: 1.17 MB - Last synced: about 2 months ago - Pushed: 10 months ago - Stars: 0 - Forks: 0

dwisiswant0/bounty-targets-alert

It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.

Language: Shell - Size: 1.95 KB - Last synced: 28 days ago - Pushed: about 2 years ago - Stars: 55 - Forks: 14

VincentDS/HackerOne-Notifier

Send notifications if a new program is published on HackerOne using Pushbullet

Language: Python - Size: 9.77 KB - Last synced: 16 days ago - Pushed: about 7 years ago - Stars: 26 - Forks: 7

an4kein/CloneAllFollowersRepos

CloneAllFollowersRepos is an essential tool in this exploration, enabling detailed analysis of your enterprise collaborators' repositories.

Language: Shell - Size: 15.6 KB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 0 - Forks: 0

0xmaximus/Galaxy-Bugbounty-Checklist

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Size: 1.91 MB - Last synced: 2 months ago - Pushed: 4 months ago - Stars: 1,298 - Forks: 302

melihi/RAM

Bypass http 403 🐏

Language: Shell - Size: 19.8 MB - Last synced: about 1 month ago - Pushed: over 2 years ago - Stars: 16 - Forks: 2

humblelad/Needle

Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip

Language: HTML - Size: 212 KB - Last synced: about 2 months ago - Pushed: about 4 years ago - Stars: 21 - Forks: 12

alexbieber/Bug_Bounty_writeups

BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔

Language: Python - Size: 197 KB - Last synced: 2 months ago - Pushed: almost 2 years ago - Stars: 797 - Forks: 115

M4DM0e/DirDar

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

Language: Go - Size: 1.38 MB - Last synced: 3 months ago - Pushed: 5 months ago - Stars: 401 - Forks: 93

abhigyantrips/hackerone-bot 📦

An unofficial Discord bot that displays info using the HackerOne API.

Language: Python - Size: 24.4 KB - Last synced: 3 months ago - Pushed: over 2 years ago - Stars: 3 - Forks: 3

luc10/h1-702-2018-ctf-wu

Language: HTML - Size: 185 KB - Last synced: about 2 months ago - Pushed: almost 6 years ago - Stars: 8 - Forks: 2

colinsenner/valve-bug-bounty

For many years CS:GO, Dota 2, and Team Fortress 2 servers had a bug that allowed malicious users to leak crucial server process memory or reliably crash any server.

Size: 146 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0

BitTheByte/Orkestra

Web-based Android debugger with inspection capabilities using Frida and Jadx as a backbone

Language: Python - Size: 68.7 MB - Last synced: 3 months ago - Pushed: 12 months ago - Stars: 26 - Forks: 12

kh4sh3i/smartrecon

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter

Language: Shell - Size: 174 KB - Last synced: 3 months ago - Pushed: 6 months ago - Stars: 113 - Forks: 33

X-Vector/X-RSA

Cryptography Tool | RSA Attacks

Language: Python - Size: 186 KB - Last synced: 3 months ago - Pushed: 12 months ago - Stars: 94 - Forks: 28

arbazkiraak/hackbot

Telegram Bot (Initial Development)

Language: Python - Size: 33.2 KB - Last synced: 3 months ago - Pushed: 11 months ago - Stars: 78 - Forks: 49

BitTheByte/Eagle

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

Language: Python - Size: 43.9 KB - Last synced: 3 months ago - Pushed: 12 months ago - Stars: 103 - Forks: 39

ternera/hacker101-ctf

Writeups for the Hacker101 CTF by Hackerone

Language: Python - Size: 42 KB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 15 - Forks: 1

0xseck/h1_scrape.sh

A simple script to get the scopes of first 100 hackerone public programs

Language: Shell - Size: 1.95 KB - Last synced: 5 months ago - Pushed: about 4 years ago - Stars: 1 - Forks: 0

whiskeykilo/hackerone-to-threadfix

A quick tool for performing an export of your HackerOne program reports to ThreadFix

Language: Python - Size: 53.7 KB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 0 - Forks: 4

EdOverflow/bounty-pls

A Chrome extension that spices up those #togetherwehitharder tweets.

Language: JavaScript - Size: 39.1 KB - Last synced: 27 days ago - Pushed: over 6 years ago - Stars: 8 - Forks: 1

EdOverflow/h1-cli

A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.

Language: Shell - Size: 5.86 KB - Last synced: 27 days ago - Pushed: almost 6 years ago - Stars: 36 - Forks: 5

dimondevceo/streamlabs_vulnerability

A hackerone report.

Language: Python - Size: 18.6 KB - Last synced: 5 months ago - Pushed: over 2 years ago - Stars: 1 - Forks: 0

Buyrealworldexploit/Windows-Remote-Code-Execution-Exploit

exploit code has emerged for a significant Windows Remote Code Execution (RCE) vulnerability, also referred to as ThemeBleed. This security issue, scoring a high-severity rating, enables remote attackers to execute code on the target system.

Size: 8.79 KB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 0 - Forks: 0

imhego/pointer

Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.

Language: Shell - Size: 17.6 KB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 11 - Forks: 0

Hacker0x01/docs.hackerone.com 📦

HackerOne Platform Documentation

Language: JavaScript - Size: 299 MB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 300 - Forks: 1,819

pxiaoer/Hacker101-CTF

Hacker101 CTF Writeup

Size: 10.7 KB - Last synced: 7 months ago - Pushed: about 4 years ago - Stars: 3 - Forks: 0

holmes-py/reports-summary

A sensible no bullshit repo of summaries of reports on hackerone, bugcrowd and alike, that makes straight up sense and make it easy to repeat and automate. This is supposed to serve as my personal reference, but should be a good public index reference for like minded.

Size: 56.6 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 1 - Forks: 0

oreoshake/hackerone-client 📦

An unofficial wrapper for the HackerOne API

Language: Ruby - Size: 362 KB - Last synced: 5 months ago - Pushed: 9 months ago - Stars: 54 - Forks: 35

alpharaoh/scopy

Collects all valid scopes from hackerone programs

Language: Python - Size: 348 KB - Last synced: 8 days ago - Pushed: almost 4 years ago - Stars: 7 - Forks: 3

nu11pointer/hackerone-cli

HackerOne CLI Utility

Language: Python - Size: 7.81 KB - Last synced: 8 months ago - Pushed: 11 months ago - Stars: 2 - Forks: 0

imhego/HEGO-Wiki

HEGO Hunting Wiki | Offensive Cybersecurity Checklist

Size: 1.2 MB - Last synced: 8 months ago - Pushed: 8 months ago - Stars: 12 - Forks: 1

shubhdhungana/coolsubh

This Is The Ultimate Bug Bounty Automation & Web Hacking Tool That I've Created.

Language: Shell - Size: 48.8 KB - Last synced: 8 months ago - Pushed: about 1 year ago - Stars: 10 - Forks: 4

codeb0ss/CVE-2023-1698-PoC

Mass Exploit - CVE-2023-1698 < Unauthenticated Remote Command Execution

Language: Python - Size: 817 KB - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

codeb0ss/CVE-2023-27034-Exploit

Mass Exploit - CVE-2023-27034

Language: Python - Size: 812 KB - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

codeb0ss/CVE-2023-34747-PoC

Mass Exploit - CVE-2023-34747 - Ujcms - Arbitrary File Upload

Language: Python - Size: 812 KB - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

codeb0ss/CVE-2023-39141-PoC

Mass Exploit - CVE-2023-39141 < Aria2 WebUI < Path traversal

Size: 2.93 KB - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

alpharaoh/czar

Automating tool for bug hunting recon and bug discovery

Language: Python - Size: 11.8 MB - Last synced: 8 days ago - Pushed: over 3 years ago - Stars: 4 - Forks: 2

codeb0ss/CVE-2023-3836

Language: Python - Size: 433 KB - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

codeb0ss/CVE-2023-20073-

Mass Exploit - CVE-2023-20073 - Cisco VPN Routers - [Unauthenticated Arbitrary File Upload and Stored XSS]

Language: Python - Size: 0 Bytes - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

codeb0ss/CVE-2023-39143

CVE-2023-39143 < PaperCut < Path Traversal (PT)

Language: Python - Size: 427 KB - Last synced: 10 months ago - Pushed: 10 months ago - Stars: 0 - Forks: 0

codeb0ss/CVE-2023-37979

CVE-2023-37979 - WordPress Authenticated XSS in Ninja-forms Plugin + Upload File

Language: Python - Size: 432 KB - Last synced: 10 months ago - Pushed: 10 months ago - Stars: 0 - Forks: 0

formidablae/HackerOne

Size: 2.93 KB - Last synced: 27 days ago - Pushed: over 2 years ago - Stars: 6 - Forks: 0

formidablae/hacker101

Code from hacker101 CTF https://ctf.hacker101.com/

Size: 3.1 MB - Last synced: 27 days ago - Pushed: over 2 years ago - Stars: 7 - Forks: 0

whiskeykilo/h1cve 📦

A Twitter bot that posts CVEs with a HackerOne report as a reference @HackerOneCVE

Language: Python - Size: 62.5 KB - Last synced: 10 months ago - Pushed: over 2 years ago - Stars: 1 - Forks: 0

an4kein/crt.go

Status: beta

Language: Go - Size: 21.5 KB - Last synced: 11 months ago - Pushed: over 2 years ago - Stars: 10 - Forks: 3

dsopas/h1-search 📦

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

Language: Go - Size: 172 KB - Last synced: 11 months ago - Pushed: over 5 years ago - Stars: 57 - Forks: 17

sa7mon/h1rss

An RSS feed generator for HackerOne Hacktivity

Language: Go - Size: 20.5 KB - Last synced: 27 days ago - Pushed: about 3 years ago - Stars: 5 - Forks: 0

noobsec/hacktivity-notify

Get newest public disclosed HackerOne report notifications on your Desktop

Language: Shell - Size: 6.84 KB - Last synced: 28 days ago - Pushed: over 4 years ago - Stars: 12 - Forks: 1

BitTheByte/WayRobots

Tool to find stored robots.txt files from the past

Language: Python - Size: 11.7 KB - Last synced: 11 months ago - Pushed: 12 months ago - Stars: 12 - Forks: 10

cwolff411/RedTeamVillage-SSHTunnels

Slides, documentation, and files from my presentation at Red Team Village for HackerOne's hacktivitycon.

Size: 220 KB - Last synced: 12 months ago - Pushed: over 2 years ago - Stars: 23 - Forks: 2

DEMON1A/bounties-uwu

Chrome extension uses the HackerOne API to reveal hidden rewarded bounties on HackerOne

Language: JavaScript - Size: 33.2 KB - Last synced: about 1 year ago - Pushed: about 1 year ago - Stars: 0 - Forks: 0

andripwn/PayloadsAll

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language: HTML - Size: 439 KB - Last synced: about 1 year ago - Pushed: almost 5 years ago - Stars: 33 - Forks: 14

SecFathy/Bugzee

Simple Script to install recommended Bug Bounty Hunting Tools In Your Linux Disto

Language: Shell - Size: 10.7 KB - Last synced: 10 months ago - Pushed: about 3 years ago - Stars: 46 - Forks: 15

secxena/credcheck

Credentials Checking Framework

Language: Python - Size: 99.6 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 51 - Forks: 6

BitTheByte/Domainker 📦

BugBounty Tool

Language: Python - Size: 344 KB - Last synced: about 1 year ago - Pushed: over 4 years ago - Stars: 38 - Forks: 21

s7safe/Rad-Team-tools

个人赏金单行脚本

Size: 89.8 KB - Last synced: about 1 year ago - Pushed: about 1 year ago - Stars: 50 - Forks: 7

machine1337/JSScanner

An Efficent tool to find juicy secrets in javascript source code. Automate Your Javascript hunting using this tool.

Language: Shell - Size: 18.6 KB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 8 - Forks: 3

Xcod3bughunt3r/WebHacking101

Black Hat - Web Hacking 101

Language: Python - Size: 2.01 MB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 1 - Forks: 0

Hackdromeda/BugBrowser 📦

Bug Browser provides information security, programming, and bug education and reference all in one skill. Bug Browser will teach you how to hack, tell you what a specific bug is, check if you have been hacked, provide a comprehensive briefing on cybersecurity around the world, a list of recent breaches, security tips, information about bug bounty programs and bug bounty platforms, the BugCrowd VRT, active HackerOne programs, and active BugCrowd bounties as well as provide additional information on these bounties.

Language: JavaScript - Size: 122 MB - Last synced: about 1 year ago - Pushed: over 5 years ago - Stars: 7 - Forks: 1

rochdiNassah/h1-bot 📦

Language: PHP - Size: 821 KB - Last synced: about 1 year ago - Pushed: almost 2 years ago - Stars: 0 - Forks: 0

rodrigoramosrs/locksmith

Locksmith is a tool which allow simple way to test several API keys for a bug bounty program

Language: C# - Size: 9.02 MB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 9 - Forks: 2

AmirhosseinBidokhti/assetWatcher

A tool to notify you of the latest changes in bug bounty programs.

Language: JavaScript - Size: 322 KB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 4 - Forks: 1

AmirhosseinBidokhti/scopeNotifier

Getting the latest scopes (domains that are eligible for bug bounty reports) of top bug bounty platforms such as H1, Bugcrowd, and more

Language: JavaScript - Size: 14.6 KB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 2 - Forks: 1

BugHunterID/BugHunterID

Para pencari bug / celah kemanan bisa bergabung.

Size: 151 KB - Last synced: about 1 year ago - Pushed: over 5 years ago - Stars: 74 - Forks: 11

kh4sh3i/FFUF-Tricks

Describe how to use ffuf different options with examples

Size: 65.4 KB - Last synced: about 1 year ago - Pushed: almost 2 years ago - Stars: 6 - Forks: 0

ashikurrahmans/h1-bugbounty-valid-reports

Size: 15.6 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 0 - Forks: 0

humblelad/open-sesame

A python tool which runs to display random publicly disclosed Hackerone reports when bored. Automatically opens the report in browser.(Addtl. support for 700+ bug bounty writeups.)

Language: Python - Size: 444 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 36 - Forks: 9

rustymagnet3000/hackerone_program_scanner

Python3 project that scans the Program notes for companies that use HackerOne. It simply looks for commonly misspelled words.

Language: Python - Size: 32.2 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 0 - Forks: 0

shreyaschavhan/bugbountywriteups

This Repository will contain Bug Bounty Write-Up that I read on daily basis!

Size: 10.7 KB - Last synced: about 1 year ago - Pushed: almost 3 years ago - Stars: 2 - Forks: 1

20matan/hacker101-challenges-writeup

in this repository i write the solutions for the hacker101 challenges. If you have some better solutions, please share with us :)

Size: 10.7 KB - Last synced: about 1 year ago - Pushed: over 5 years ago - Stars: 4 - Forks: 1

srkgupta/mattermost-plugin-hackerone

Hackerone plugin for Mattermost

Language: Go - Size: 1.08 MB - Last synced: 10 months ago - Pushed: over 1 year ago - Stars: 1 - Forks: 0