388 Open source projects that are alternatives of or similar to BugHunterID

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Simple Script to install recommended Bug Bounty Hunting Tools In Your Linux Disto

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

BugBounty Tool

The unofficial HackerOne disclosure Timeline

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Credentials Checking Framework

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

No description or website provided.

Awesome Vulnerable Applications

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

All about bug bounty (bypasses, payloads, and etc)

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Telkom University open source projects

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

Scan secrets from Continuous Integration Build Logs

REST API Al-Quran Indonesia dengan terjemahan, tafsir (Kemenag, Quraish Shihab, Al-Jalalain), audio murottal (per surah dan ayat dari 6 qori), random ayat.

Event Hacktoberfest Indonesia 2021

Full Nuclei automation script with logic explanation.

Simple script that utilities discord's flaw in detecting who blocked who.

Swiftly search FDNS datasets from Rapid7 Open Data

ESP8266 based WiFi implant to remotely track the presence of certain people or devices via a simple web interface

Modified Nuclei Templates Version to FUZZ Host Header

goverview - Get an overview of the list of URLs

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

一些漏洞分析

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Little Bug Bounty & Hacking Tools⚔️

Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.

XSS Payload without Anything.

This document proposes a way of standardising the structure, language, and grammar used in security policies.

Pentest/BugBounty progress control with scanning modules

Bounty program for improvements to Tcl and certain Tcl packages

A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau

Messy BurpSuite plugin for SQL Truncation vulnerabilities.

NAV community site

Find host header injections and perform Host Header attacks with other kind of bugs like web cache poissoning

App to add websites/software/files/folders/scripts to the Windows 10 Start Menu and Taskbar, and priority shortcuts to Windows 10 Search.

Serverless Indonesian Identity E-KTP OCR with Google Cloud Platform (GCP) - Cloud Functions, Cloud Storage, and Cloud PubSub

Kubernetes Scanner

No description or website provided.

JSON RSA to HMAC and None Algorithm Vulnerability POC

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

Http request smuggling vulnerability scanner

Astra is a tool to find URLs and secrets inside a webpage/files

Intentionally vulnerable Android application.

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

My personal bug bounty toolkit.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Unofficial CNN Indonesia news API

Android library for helping you to reach out to best possible answer for your bug/error available on stack overflow and will show it in your Android Studio Console only.

Signatures for jaeles scanner by @j3ssie

Unleash the power of cloud

List emiten dan pergerakan harga saham tiap harinya di bursa saham Indonesia

Running nuclei Continuously