366 Open source projects that are alternatives of or similar to Bugbounty Scans

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Biu-framework🚀 Security Scan Framework For Enterprise Intranet Based Services(企业内网基础服务安全扫描框架)

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Cross-site scripting labs for web application security enthusiasts

A passive subdomain finder

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

Cross Origin Resource Sharing MisConfiguration Scanner

Simple shell script for automated domain recognition with some tools

a rusty `scanf` (`scan!`) and inverse of `print!` (`read!`)

挖掘国内外漏洞平台必备的自动化捡钱赏金技巧，看了并去做了捡钱如喝水。

A tool to check a bunch of URLs that contain reflecting params.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Tool for catching and logging different types of requests.

Web Application recon automation

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Change monitoring app that checks the content of web pages in different periods.

跨平台大型网络端口扫描器(支持批量A段/B段/C段/IP列表(TXT)/端口列表,Banner识别比S扫描器加强版更准)

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

A curated list of various bug bounty tools

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

Hacking tools

Awesome Writeups and POCs

Scans a list of websites for Cloudfront or S3 Buckets

Poor (rich?) man's bug bounty pipeline

Command line tool for testing CRLF injection on a list of domains.

A tool to automate the boring process of APK recon

A Python3 based single-file subdomain enumerator

🔺 Red Team Hardware Toolkit 🔺

Random Tools for Bug Bounty

A simple SSRF-testing sheriff written in Go

Awesome Fingerprint Identify for react-native (android only)

CVE-2017-9506 - SSRF

Advanced Client-side Printing & Scanning Solution for Javascript

Decode All Bases - Base Scheme Decoder

🍳 RadarView for Android 是一个雷达扫描动画后，然后展示得分效果的控件。

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Automated All-in-One OS Command Injection Exploitation Tool.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

Extract API keys from file or url using by magic of python and regex.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

differer finds how URLs are parsed by different languages in order to help bug hunters break filters

Scanning APK file for URIs, endpoints & secrets.

The Swiss Army knife for automated Web Application Testing

An OSINT tool to find contacts in order to report security vulnerabilities.

A Colab For Bug Hunting!

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

Extracting URLs of a specific target based on the results of "commoncrawl.org"

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres and MySQL)

Rockyou for web fuzzing