Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details

All Projects → BugBountyResources → targets

BugBountyResources / targets

Licence: other

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Programming Languages

139335 projects - #7 most used programming language

Labels

security information cybersecurity infosec recon bugbounty security-tools reconnaissance

Projects that are alternatives of or similar to targets

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Stars: ✭ 541 (+536.47%)

Mutual labels: cybersecurity, recon, bugbounty, reconnaissance

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Stars: ✭ 268 (+215.29%)

Mutual labels: infosec, recon, bugbounty, reconnaissance

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Stars: ✭ 3,439 (+3945.88%)

Mutual labels: infosec, recon, bugbounty, reconnaissance

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Stars: ✭ 140 (+64.71%)

Mutual labels: infosec, recon, bugbounty, reconnaissance

Related subdomains finder

Stars: ✭ 29 (-65.88%)

Mutual labels: infosec, recon, bugbounty, reconnaissance

Pentest: Subdomains enumeration tool for penetration testers.

Stars: ✭ 142 (+67.06%)

Mutual labels: infosec, recon, bugbounty, reconnaissance

Defaultcreds Cheat Sheet

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Stars: ✭ 1,949 (+2192.94%)

Mutual labels: cybersecurity, infosec, bugbounty

Pyiris Backdoor

PyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>

Stars: ✭ 145 (+70.59%)

Mutual labels: cybersecurity, infosec, reconnaissance

Enumerate information from NTLM authentication enabled web endpoints 🔎

Stars: ✭ 252 (+196.47%)

Mutual labels: cybersecurity, recon, reconnaissance

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Stars: ✭ 296 (+248.24%)

Mutual labels: cybersecurity, infosec, reconnaissance

An advanced tool for email reconnaissance

Stars: ✭ 387 (+355.29%)

Mutual labels: cybersecurity, infosec, recon

py-scripts-other

A collection of some of my scripts

Stars: ✭ 79 (-7.06%)

Mutual labels: cybersecurity, infosec, bugbounty

AttackSurfaceManagement

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Stars: ✭ 45 (-47.06%)

Mutual labels: cybersecurity, bugbounty, reconnaissance

Reconky-Automated Bash Script

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Stars: ✭ 167 (+96.47%)

Mutual labels: recon, bugbounty, reconnaissance

One way to continuously monitor sensitive information that could be exposed on Github

Stars: ✭ 115 (+35.29%)

Mutual labels: cybersecurity, recon, reconnaissance

Python library and CLI for the Bug Bounty Recon API

Stars: ✭ 169 (+98.82%)

Mutual labels: cybersecurity, recon, bugbounty

all manner of wordlists

Stars: ✭ 23 (-72.94%)

Mutual labels: infosec, recon, bugbounty

apkizer is a mass downloader for android applications for all available versions.

Stars: ✭ 40 (-52.94%)

Mutual labels: recon, bugbounty, reconnaissance

Information Security Library

Stars: ✭ 60 (-29.41%)

Mutual labels: cybersecurity, infosec, bugbounty

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Stars: ✭ 6,882 (+7996.47%)

Mutual labels: cybersecurity, infosec, reconnaissance

View All Similar Projects ➔

📂 Public Bug Bounty Targets Data

By BugBountyResources

A collection of over 5.1M sub-domains and assets belonging to bug bounty targets, all put in a single file (using a script ).

Goal of this repo is to track changes in targets and add/remove new/old targets, in order to perform reconnaissance en-masse, by putting them all in one place. Collecting all sub-domains at one place can make certain bulk operations like bulk vulnerability testing by fingerprinting easy, all at once!

Also, it is supposed to work as a mirror of the ProjectDiscovery's public bug bounty assets recon data.

⚒️ Workflow

Extract target data from Chaos, using the targets_extract.py script
Push data to GitHub

⚙️ Install & Usage

root@bug-bounty:~/recon/assets# ./targets_extract.py -h
usage: targets_extract.py [-h] [-d DIRECTORY] [-o OUTPUT] [-c PROCESSES]

If needed, specify output directory or, file name. Example:
./targets_extract.py -o assets.txt to store to ./output/assets.txt, optionally
specify directory (./targets_extract.py -d mydir). Also, you can increase
number of processes with -c flag to make it even faster.

optional arguments:
  -h, --help            show this help message and exit
  -d DIRECTORY, --directory DIRECTORY
                        Specify an output directory [Default: ./output]
  -o OUTPUT, --output OUTPUT
                        Specify an output file name [Default: all.txt]
  -c PROCESSES, --processes PROCESSES
                        Specify number of processes for faster extraction
                        [Default: 30]

Clone the repo: git clone https://github.com/BugBountyResources/targets.git
Navigate into the repo using: cd targets
Give execute permissions to script: chmod +x targets_extract.py
Run script: ./targets_extract.py

🛠️ Further Customize

If you want to add more processes (for download & zip extraction), use the -c flag - ./targets_extract.py -c 60
If you want to output to custom file (saved to output/all.txt by default), you can specify the file name in -o flag - ./targets_extract.py -o custom.txt
If you want to store output in custom folder add an addition -d flag - ./targets_extract.py -d custom_directory

📊 Stats

File	Number of Assets
Download Part 1	2.55M (2,556,493)
Download Part 2	2.55M (2,556,493)

Total collected: 5.1M assets (5,112,986 assets)

ℹ️ Source of Data

Data collected from ProjectDiscovery's Chaos Project.

🙌 Credits

payloadartist - conceived the idea of collecting all the data in one place, created the project and wrote the extraction script. Also part of the BugBountyResources team
ProjectDiscovery Team (Chaos) - They own and made available this data! Massive thanks to the whole ProjectDiscovery Team for sharing updated reconnaissance data of Public Bug Bounty programs.
Aryan Rupala - Part of the BugBountyResources team, who helps track down issues, shares ideas and also writes code.
PR3R00T - Gave useful insights, cleaned code, improved docs by adding Installation instructions and made an improvement for filtering out duplicates.
You? - Contribute to the project, and you can be featured here in the Credits section!

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 85

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (0) 🔗