380 Open source projects that are alternatives of or similar to swiss-bugbounty-programs

Related subdomains finder

One-click installer for Frida and Burp certs for SSL Pinning bypass

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

🎯 XML External Entity (XXE) Injection Payload List

Vulnerability Database | huntr.dev

Credentials Checking Framework

A Tool for Domain Flyovers

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

Repositório com conteúdo sobre web hacking em português

Collection of Facebook Bug Bounty Writeups

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

A note-taking macOS app for penetration-testers.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Extract endpoints marked as disallow in robots files to generate wordlists.

This challenge is Inon Shkedy's 31 days API Security Tips.

Subdomain Takeover tool written in Go

🎯 RFI/LFI Payload List

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

Little Bug Bounty & Hacking Tools⚔️

平常看到好的渗透hacking工具和多领域效率工具的集合

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Web path scanner

A Powerful Subdomain Takeover Tool

A python tool to check subdomain takeover vulnerability

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

A collection of awesome one-liner scripts especially for bug bounty tips.

Pentest: Subdomains enumeration tool for penetration testers.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

a Go code to detect leaks in JS files via regex patterns

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

🐰 Managing command snippets for hackers/bug bounty hunters. with pet.

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Host Header Injection Checker

Do some quick reconnaissance on a domain-based web-application

Yet Another PHP Shell - The most complete PHP reverse shell

covid19 map for Switzerland using Esri Maps.

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. Please use it instead: https://github.com/assetnote/wordlists

BugBounty Tool

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Simultaneously execute various subdomain enumeration tools and aggregate results.

No description or website provided.

anewer appends lines from stdin to a file if they don't already exist in the file. This is a rust version of https://github.com/tomnomnom/anew