Hack-with-Github / Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

android security awesome reverse-engineering pentesting-windows hacking penetration-testing bug-bounty fuzzing

Updated May 18, 2020

maurosoria / dirsearch

Web path scanner

python security scanner hacking bruteforce penetration-testing bug-bounty fuzzing pentesting pentest fuzzer appsec dirsearch dirbuster scanner-web

Updated Jul 30, 2020
Python

nahamsec / Resources-for-Beginner-Bug-Bounty-Hunters

Star

A list of resources for those interested in getting started in bug bounties

education hackers hacking xss bug-bounty web-security pentest ssrf bug-bounty-hunters learn2hack

Updated Jul 2, 2020

projectdiscovery / subfinder

Star

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

osint bug-bounty subdomains reconaissance subdomain-enumeration

Updated Jul 30, 2020
Go

tom0li / collection-document

Star

Collection of quality safety articles

Updated Jul 27, 2020

haccer / subjack

Star

Subdomain Takeover tool written in Go

go golang security subdomain bug-bounty infosec pentesting bugbounty takeover hostile subdomain-takeover

Updated Jul 23, 2020
Go

smodnix / 31-days-of-API-Security-Tips

Star

This challenge is Inon Shkedy's 31 days API Security Tips.

security bug-bounty infosec bugbounty pentest api-security bugbountytips api-pentest

Updated Apr 12, 2020

wagiro / BurpBounty

Star

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

bug-bounty bugbounty vulnerability-detection burpsuite burp-extensions vulnerability-scanner

Updated Jul 6, 2020
Java

kpcyrd / sn0int

Star

Semi-automatic OSINT framework and package manager

rust security intelligence security-audit osint lua location certificate-transparency bug-bounty pentesting recon security-scanner investigation reconnaissance osint-framework

Updated Jun 23, 2020
Rust

yassineaboukir / sublert

Star

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

python security hacking penetration-testing certificate-transparency bug-bounty pentest information-gathering monitoring-tool reconnaissance certificate-transparency-logs sublert

Updated Jul 23, 2020
Python

ehrishirajsharma / SwiftnessX

Star

A cross-platform note-taking & target-tracking app for penetration testers.

checklist penetration-testing bug-bounty electronjs security-tools

Updated Jul 30, 2020
JavaScript

Ice3man543 / SubOver

Star

A Powerful Subdomain Takeover Tool

subdomain bug-bounty pentesting bugbounty subdomains takeover hostile subdomain-takeover takeover-subdomain hostile-subdomain-takeover

Updated Aug 30, 2018
Go

tillson / git-hound

Star

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

security osint secrets bug-bounty recon security-tools reconnaissance secrets-detection

Updated May 23, 2020
Go

bl4de / security-tools

Star

Collection of small security tools created mostly in Python. CTFs, pentests and so on

python scanner static-analysis hacking bug-bounty infosec pentesting ctf bugbounty ctf-tools webappsec security-tools itsecurity bug-bounties security-testing

Updated Jul 18, 2020
Python

martinzhou2015 / SRCMS

Star

SRCMS企业应急响应与缺陷管理系统

php content-management bug-bounty bug-tracking-system content-management-system

Updated Oct 11, 2019
JavaScript

Ice3man543 / hawkeye

Star

Hawkeye filesystem analysis tool

golang hacking bug-bounty infosec pentesting netsec hackthebox

Updated Jul 21, 2018
Go

payloadbox / xxe-injection-payload-list

Star

🎯 XML External Entity (XXE) Injection Payload List

Updated Jan 6, 2020

B3nac / InjuredAndroid

Star

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

android kotlin webview kotlin-android apk bug-bounty pentesting android-studio ctf vulnerabilities flutter android-security security-testing flutter-security flutter-xss

Updated Jul 26, 2020
Kotlin

payloadbox / rfi-lfi-payload-list

Star

🎯 RFI/LFI Payload List

security bug-bounty application-security bugbounty appsec payload payloads lfi rfi web-hacking websecurity web-application-security security-research security-researcher lfi-exploitation payload-list lfi-vulnerability security-researchers rfi-exploiton rfi-vulnerabillity

Updated Jan 9, 2020

knassar702 / scant3r

Star

ScanT3r - Web Security Scanner

linux python3 rce bug-bounty sql-injection web-security xss-scanners hacking-tool web-scanner hacking-tools ssti

Updated Jul 11, 2020
Python

aaaguirrep / pentest

Star

Image with the more used tools to create a pentest environment easily and quickly.

hacking bug-bounty pentesting bugbounty ctf-tools hacking-tools pentesting-tools

Updated Jul 28, 2020
Dockerfile

tijme / not-your-average-web-crawler

Star

A web crawler (for bug hunting) that gathers more than you can imagine.

python security crawler scraper spider custom scanner request bug-bounty post vulnerability get callbacks

Updated May 9, 2020
Python

subfinder / goaltdns

Star

A permutation generation tool written in golang

golang hacking bruteforce bug-bounty infosec recon netsec subdomains subdomain-discovery bruteforce-subdomain

Updated Jul 15, 2019
Go

clirimemini / Keye

Star

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

python security hacking penetration-testing bug-bounty pentest monitoring-tool reconnaissance

Updated Dec 30, 2019
Python

bing0o / bash_scripting

Star

bash scripting thing !

shell bash automation hacking bug-bounty recon bug-hunting hacking-tools

Updated Jul 27, 2020
Shell

IamHDT / Ecommerce-Website-Security-CheckList

Star

List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.

security ecommerce hacking bug-bounty hacker ecomm

Updated Nov 28, 2017

nerrorsec / GoogleDorker

Star

This is a simple tool to automate google hacking when doing web penetration testing or bug hunting.

google bug-bounty automated vulnerability-detection hacking-tool google-hacking google-hacking-database googledork hacking-tools

Updated Mar 5, 2020
Python

jakejarvis / subtake

Star

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

go golang security subdomain bug-bounty infosec pentesting takeover subdomain-takeovers

Updated Jun 29, 2020
Go

GouveaHeitor / spellbook

Star

Micro-framework for rapid development of reusable security tools

perl tricks hacking toolbox exploits bug-bounty pentesting ctf ctf-tools security-tools spellbook security-spellbook

Updated Jul 17, 2020
Perl

0xHJK / dumpall

Star

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

security tools spider scanner hacking python3 svn bug-bounty pentesting githack dumpall

Updated May 22, 2020
Python

bug-bounty

Here are 92 public repositories matching this topic...

Hack-with-Github / Awesome-Hacking

maurosoria / dirsearch

nahamsec / Resources-for-Beginner-Bug-Bounty-Hunters

projectdiscovery / subfinder

tom0li / collection-document

haccer / subjack

smodnix / 31-days-of-API-Security-Tips

wagiro / BurpBounty

kpcyrd / sn0int

yassineaboukir / sublert

ehrishirajsharma / SwiftnessX

Ice3man543 / SubOver

tillson / git-hound

bl4de / security-tools

martinzhou2015 / SRCMS

Ice3man543 / hawkeye

payloadbox / xxe-injection-payload-list

B3nac / InjuredAndroid

payloadbox / rfi-lfi-payload-list

knassar702 / scant3r

aaaguirrep / pentest

tijme / not-your-average-web-crawler

subfinder / goaltdns

clirimemini / Keye

bing0o / bash_scripting

IamHDT / Ecommerce-Website-Security-CheckList

nerrorsec / GoogleDorker

jakejarvis / subtake

GouveaHeitor / spellbook

0xHJK / dumpall

Improve this page

Add this topic to your repo