306 Open source projects that are alternatives of or similar to Awesome Bugbounty Writeups

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Penetration tests guide based on OWASP including test cases, resources and examples.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Mining parameters from dark corners of Web Archives

A Python3 based single-file subdomain enumerator

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Cross Origin Resource Sharing MisConfiguration Scanner

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

Random Tools for Bug Bounty

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Web path scanner

Subdomain Takeover tool written in Go

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Automating XSS using Bash

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

Find exploits in local and online databases instantly

A big list of Android Hackerone disclosed reports and other resources.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Making Favicon.ico based Recon Great again !

The format of various s3 buckets is convert in one format. for bugbounty and security testing.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

DNS-Discovery is a multithreaded subdomain bruteforcer.

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

RFD Checker - security CLI tool to test Reflected File Download issues

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

🎯 Server Side Template Injection Payloads

HostHunter a recon tool for discovering hostnames using OSINT techniques.

The Swiss Army knife for automated Web Application Testing

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Collection of Facebook Bug Bounty Writeups

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

A fast http and https prober, to check which URLs are alive

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

OneForAll是一款功能强大的子域收集工具

A collection of response templates for invalid bug bounty reports.

OSINT

Urls de-duplication tool for better recon.

A fast DOM based XSS vulnerability scanner with simplicity.

A fast HTTP Response status checker implemented in Python3

A list of interesting payloads, tips and tricks for bug bounty hunters.

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

A MongoDB importer and API for Project Sonars DNS datasets

Security Tool to Look For Interesting Files in S3 Buckets

The fastest dork scanner written in Go.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Automation for javascript recon in bug bounty.

Subdomain takeover vulnerability checker

#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

An automated approach to performing recon for bug bounty hunting and penetration testing.

Cross-site scripting labs for web application security enthusiasts

A curated list of various bug bounty tools

websocket-connection-smuggler