Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
-
Updated
Jul 21, 2023 - Shell
Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Asset inventory of over 800 public bug bounty programs.
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
A fast DOM based XSS vulnerability scanner with simplicity.
Full Nuclei automation script with logic explanation.
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using shell script and open source tools.
It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
XSS Finder Via SSTI
This Is The Ultimate Bug Bounty Automation & Web Hacking Tool That I've Created.
bash script for automating subdomain enumeration process either passive or active
Automate Nuclei scans and streamline bug hunting workflows
Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is merged into one file.
"zwatcher is a lightweight bash script for monitoring sub/domains or a list of sub/domains and javascript files. It compares HTTP status codes and content length to detect changes and notifies the user when any modifications occur. Easily keep track of your domains' health and security with zwatcher."
Extract Github Members Of Target Organization
A bash script that scrapes various proxy feeds and asynchronously validates them
AutomateHunter is a Bash script that automates common tools used in bug bounty hunting, such as amass, whois, nslookup, traceroute, wafw00f, nmap, rustscan, nikto, nuclei, and ffuf.
It can be used to discover subdomains and other related domains
Find Admin Pages is a simple and efficient Bash script for bug bounty, and security researchers. Its been written to search through source code for potential admin pages.
Payloads from BB reports for Open Redirect.
Add a description, image, and links to the bugbountytips topic page so that developers can more easily learn about it.
To associate your repository with the bugbountytips topic, visit your repo's landing page and select "manage topics."