304 Open source projects that are alternatives of or similar to Nuclei Templates

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

A fast http and https prober, to check which URLs are alive

A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

RFD Checker - security CLI tool to test Reflected File Download issues

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Random Tools for Bug Bounty

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

A fast HTTP Response status checker implemented in Python3

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A big list of Android Hackerone disclosed reports and other resources.

The format of various s3 buckets is convert in one format. for bugbounty and security testing.

Dump exposed HTTP .git fast

A Python3 based single-file subdomain enumerator

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

The Swiss Army knife for automated Web Application Testing

Mining parameters from dark corners of Web Archives

Scan for open AWS S3 buckets and dump the contents

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

A collection of response templates for invalid bug bounty reports.

Web path scanner

Subdomain Takeover tool written in Go

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

Security Tool to Look For Interesting Files in S3 Buckets

websocket-connection-smuggler

Powerfull XSS Scanning and Parameter analysis tool&gem

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Automatically brute force all services running on a target.

Command line tool for testing CRLF injection on a list of domains.

A tool for testing subdomain takeover possibilities at a mass scale.

Extract API keys from file or url using by magic of python and regex.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Hacking tools

a recon tool that allows searching on URLs that are exposed via shortener services

differer finds how URLs are parsed by different languages in order to help bug hunters break filters

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

Given a list of hosts, this small utility fetches all whitelisted domains from the hosts' CSPs.

Gospider - Fast web spider written in Go

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

A curated list of various bug bounty tools

All about bug bounty (bypasses, payloads, and etc)

This challenge is Inon Shkedy's 31 days API Security Tips.

🎯 SQL Injection Payload List

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Multi Tool Subdomain Enumeration

🎯 Command Injection Payload List

Scans a list of websites for Cloudfront or S3 Buckets

A Powerful Subdomain Takeover Tool

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

A collection of awesome one-liner scripts especially for bug bounty tips.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Secret and/ credential patterns used for gf.

Penetration tests guide based on OWASP including test cases, resources and examples.

Find exploits in local and online databases instantly

#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.