386 Open source projects that are alternatives of or similar to Bug-Hunting

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

Famous bugs fixed, problems solved and failures experienced in software history 🐛 🐝 🐜 🐞

ScanT3r - Web Security Scanner

RAS(RAndom Subdomain) Fuzzer

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

bash scripting thing !

A react native module that lets you to register a global error handler that can capture fatal/non fatal uncaught exceptions.

A collection of various awesome lists for hackers, pentesters and security researchers

Bug Tracking app with project members support. Made with PERN stack + TypeScript.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

all manner of wordlists

[DEPRECATED] Please upgrade to our Universal JS notifier "@bugsnag/js" • https://github.com/bugsnag/bugsnag-js

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

A permutation generation tool written in golang

List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

A web crawler (for bug hunting) that gathers more than you can imagine.

Official bugsnag error monitoring and error reporting for django, flask, tornado and other python apps.

Collection of quality safety articles. Awesome articles.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Shake to create Bug Report on GitHub, GitLab and Azure DevOps!

Micro-framework for rapid development of reusable security tools

Simple Server Side Request Forgery services enumeration tool.

A Fast Broken Link Hijacker Tool written in Python

Unique wordlist generator of unique wordlists.

Javascript error handling tool for Bugsnag. Monitor and report JavaScript bugs & errors.

You can find hardcoded Api-Key,Secret,Token Etc..

Semi-automatic OSINT framework and package manager

The Qubes OS Project issue tracker

This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

A collection of some of my scripts

Seebug、structs、cve漏洞实时监控推送系统🔦

A cross-platform note-taking & target-tracking app for penetration testers.

Open-source vulnerability disclosure and bug bounty program database.

Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.

TodoKit - A beautiful bug and issue tracking software.

ktPlayer - Music Player on Java 8 with using JavaFX (Desktop)

Double-Free BUG in WhatsApp exploit poc.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

TablePlus macOS issue tracker

Simple Script to install recommended Bug Bounty Hunting Tools In Your Linux Disto

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

Gosint is a distributed asset information collection and vulnerability scanning platform

Bug and crash reporting SDK for iOS apps.

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

SRCMS企业应急响应与缺陷管理系统

A collection of Discord bugs and exploits

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

A comprehensive curated list of available Blockchain Bug Bounty Programs.

This Python script can be used to bypass IP source restrictions using HTTP headers.

Automatic panic monitoring for Go and Go web frameworks, like negroni, gin, and revel

A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau

No description or website provided.

Shake to send a bug report!

JSON RSA to HMAC and None Algorithm Vulnerability POC