A list of resources for those interested in getting started in bug bounties
Open-source vulnerability disclosure and bug bounty program database
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.
This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
Custom scripts for directory fuzzing, subdomain enumeration, and more.
A handy plugin for copying requests/responses directly from Burp, some extra magic included.
This repo is for people that are searching for IT Security Specialists in their native language, or for people that are language learners and just want to immerse more!
A handy tool for bug bounty hunters/pentesters to check the http status codes of all the links/URLs collectively
A highly automated and modular bug bounty reconnaissance toolkit integrating over 15 industry-standard tools for streamlined subdomain enumeration, vulnerability detection, and OSINT gathering. Design...
All-in-one Dockerized recon toolkit for security researchers — combines Subfinder, Sublist3r, MassDNS, dnsx, Assetfinder, and Nmap for comprehensive domain and subdomain intelligence gathering.