120 Open source projects that are alternatives of or similar to Bug-Bounty-Scripts

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

A python script designed to check if the website if vulnerable of clickjacking and create a poc

Work in progress...

App to add websites/software/files/folders/scripts to the Windows 10 Start Menu and Taskbar, and priority shortcuts to Windows 10 Search.

Shake to send a bug report!

Pentest: Subdomains enumeration tool for penetration testers.

一些漏洞分析

TablePlus macOS issue tracker

JSON RSA to HMAC and None Algorithm Vulnerability POC

Famous bugs fixed, problems solved and failures experienced in software history 🐛 🐝 🐜 🐞

Parse HTTP X-Forwarded-For header

Bug Tracking app with project members support. Made with PERN stack + TypeScript.

Related subdomains finder

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

No description or website provided.

Determine address of proxied request

Little Bug Bounty & Hacking Tools⚔️

A collection of Discord bugs and exploits

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Android library for helping you to reach out to best possible answer for your bug/error available on stack overflow and will show it in your Android Studio Console only.

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

A sandbox escape based on the proof-of-concept (CVE-2018-4087) by Rani Idan (Zimperium)

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Official bugsnag error monitoring and error reporting for django, flask, tornado and other python apps.

Open-source vulnerability disclosure policy templates.

Extract endpoints marked as disallow in robots files to generate wordlists.

A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

ESP8266 based WiFi implant to remotely track the presence of certain people or devices via a simple web interface

My Tools For Bug Bounty

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Credentials Checking Framework

x-forwared filter for the masses

TodoKit - A beautiful bug and issue tracking software.

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

Awesome Vulnerable Applications

Simple script that utilities discord's flaw in detecting who blocked who.

Automatic panic monitoring for Go and Go web frameworks, like negroni, gin, and revel

No description or website provided.

Urls status code & content length checker

Obtain GraphQL API Schema even if the introspection is not enabled

The unofficial HackerOne disclosure Timeline

Host Header Injection Scanner

How to crash the integrated browser in FB for Android? Let's open that URL!

DorkScout - Golang tool to automate google dork scan against the entiere internet or specific targets

Laravel error reporting tool

Para pencari bug / celah kemanan bisa bergabung.

Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )

[DEPRECATED] Please upgrade to our Universal JS notifier "@bugsnag/js" • https://github.com/bugsnag/bugsnag-js

A react native module that lets you to register a global error handler that can capture fatal/non fatal uncaught exceptions.

A $20k consensus challenge based on TigerBeetle's implementation of the pioneering Viewstamped Replication protocol.

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

One-click installer for Frida and Burp certs for SSL Pinning bypass

Tips and Tutorials for Bug Bounty and also Penetration Tests.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Simulating Log4j Remote Code Execution (RCE) vulnerability in a flask web server using python's logging library with custom formatter that simulates lookup substitution by executing remote exploit code.

Narrowed down reproduction of UIStackView hiding with animation bug