1267 Open source projects that are alternatives of or similar to Bugbountyscanner

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

Making Favicon.ico based Recon Great again !

Fully automated offensive security framework for reconnaissance and vulnerability scanning

OSINT

A tool to fastly get all javascript sources/files

Web path scanner

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Powerfull XSS Scanning and Parameter analysis tool&gem

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A fast http and https prober, to check which URLs are alive

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Hacking tools

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

An OSINT tool to gather information about the real owner of a phone number

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Automated NoSQL database enumeration and web application exploitation tool.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Repositório com conteúdo sobre web hacking em português

A passive subdomain finder

Automated Red Team Infrastructure deployement using Docker

Rockyou for web fuzzing

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

All about bug bounty (bypasses, payloads, and etc)

🎯 SQL Injection Payload List

🐳 Full-fledged Android SDK Docker Image

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

websocket-connection-smuggler

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

The Swiss Army knife for automated Web Application Testing

Automatically brute force all services running on a target.

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Urls de-duplication tool for better recon.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Perform automated network reconnaissance scans

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Python library and CLI for the Bug Bounty Recon API

Change monitoring app that checks the content of web pages in different periods.

🔺 Red Team Hardware Toolkit 🔺

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Awesome Vulnerable Applications

Advanced and easy to use penetration testing framework 💣🔎

🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

network reconnaissance toolkit

Your Google Recon is Now Automated