Bounty Targets DataThis repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Stars: ✭ 1,783 (+1520.91%)
h1-searchTool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
Stars: ✭ 58 (-47.27%)
Famous BugsFamous bugs fixed, problems solved and failures experienced in software history 🐛 🐝 🐜 🐞
Stars: ✭ 105 (-4.55%)
Scant3rScanT3r - Web Security Scanner
Stars: ✭ 248 (+125.45%)
ras-fuzzerRAS(RAndom Subdomain) Fuzzer
Stars: ✭ 42 (-61.82%)
RvdRobot Vulnerability Database. An archive of robot vulnerabilities and bugs.
Stars: ✭ 87 (-20.91%)
React Native Exception HandlerA react native module that lets you to register a global error handler that can capture fatal/non fatal uncaught exceptions.
Stars: ✭ 1,170 (+963.64%)
Awesome HackingA collection of various awesome lists for hackers, pentesters and security researchers
Stars: ✭ 48,038 (+43570.91%)
Bug Tracker Pern TsBug Tracking app with project members support. Made with PERN stack + TypeScript.
Stars: ✭ 79 (-28.18%)
SubtakeAutomatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Stars: ✭ 104 (-5.45%)
fuzzmostall manner of wordlists
Stars: ✭ 23 (-79.09%)
Bugsnag Node[DEPRECATED] Please upgrade to our Universal JS notifier "@bugsnag/js" • https://github.com/bugsnag/bugsnag-js
Stars: ✭ 48 (-56.36%)
KeyeKeye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.
Stars: ✭ 101 (-8.18%)
GoaltdnsA permutation generation tool written in golang
Stars: ✭ 119 (+8.18%)
Ecommerce Website Security ChecklistList of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.
Stars: ✭ 98 (-10.91%)
crtfinderFast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques
Stars: ✭ 96 (-12.73%)
Bugsnag PythonOfficial bugsnag error monitoring and error reporting for django, flask, tornado and other python apps.
Stars: ✭ 69 (-37.27%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+1160.91%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 1,572 (+1329.09%)
BeetleShake to create Bug Report on GitHub, GitLab and Azure DevOps!
Stars: ✭ 45 (-59.09%)
SpellbookMicro-framework for rapid development of reusable security tools
Stars: ✭ 53 (-51.82%)
SsrfmapSimple Server Side Request Forgery services enumeration tool.
Stars: ✭ 50 (-54.55%)
BrokenlinkhijackerA Fast Broken Link Hijacker Tool written in Python
Stars: ✭ 45 (-59.09%)
Bugsnag JsJavascript error handling tool for Bugsnag. Monitor and report JavaScript bugs & errors.
Stars: ✭ 625 (+468.18%)
Find-HardcodedYou can find hardcoded Api-Key,Secret,Token Etc..
Stars: ✭ 63 (-42.73%)
Sn0intSemi-automatic OSINT framework and package manager
Stars: ✭ 814 (+640%)
Qubes IssuesThe Qubes OS Project issue tracker
Stars: ✭ 384 (+249.09%)
Bounty TargetsThis project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo
Stars: ✭ 265 (+140.91%)
SublertSublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Stars: ✭ 699 (+535.45%)
Bug MonitorSeebug、structs、cve漏洞实时监控推送系统🔦
Stars: ✭ 257 (+133.64%)
SwiftnessxA cross-platform note-taking & target-tracking app for penetration testers.
Stars: ✭ 673 (+511.82%)
DiodbOpen-source vulnerability disclosure and bug bounty program database.
Stars: ✭ 654 (+494.55%)
ScanApiSubdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.
Stars: ✭ 34 (-69.09%)
TodokitTodoKit - A beautiful bug and issue tracking software.
Stars: ✭ 253 (+130%)
CVE-2020-11932Double-Free BUG in WhatsApp exploit poc.
Stars: ✭ 82 (-25.45%)
Git HoundReconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
Stars: ✭ 602 (+447.27%)
SubfinderSubfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
Stars: ✭ 4,509 (+3999.09%)
TableplusTablePlus macOS issue tracker
Stars: ✭ 2,554 (+2221.82%)
BugzeeSimple Script to install recommended Bug Bounty Hunting Tools In Your Linux Disto
Stars: ✭ 42 (-61.82%)
Black Hat RustApplied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB
Stars: ✭ 331 (+200.91%)
gosintGosint is a distributed asset information collection and vulnerability scanning platform
Stars: ✭ 344 (+212.73%)
shake-iosBug and crash reporting SDK for iOS apps.
Stars: ✭ 25 (-77.27%)
InjuredandroidA vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
Stars: ✭ 317 (+188.18%)
VajraVajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Stars: ✭ 269 (+144.55%)
SrcmsSRCMS企业应急响应与缺陷管理系统
Stars: ✭ 282 (+156.36%)
discord-bugs-exploitsA Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.
Stars: ✭ 22 (-80%)
Dumpall一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
Stars: ✭ 250 (+127.27%)
ipsourcebypassThis Python script can be used to bypass IP source restrictions using HTTP headers.
Stars: ✭ 326 (+196.36%)
Bugsnag GoAutomatic panic monitoring for Go and Go web frameworks, like negroni, gin, and revel
Stars: ✭ 155 (+40.91%)
massurlA simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau
Stars: ✭ 14 (-87.27%)
Android-LDoSNo description or website provided.
Stars: ✭ 15 (-86.36%)
TokenBreakerJSON RSA to HMAC and None Algorithm Vulnerability POC
Stars: ✭ 51 (-53.64%)