This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
#网络爬虫#Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gath...
Bugcrowd’s baseline priority ratings for common security vulnerabilities
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
Bugbounty scope tool
List of reporting templates I have used since I started doing BBH.
Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
Python library and CLI for the Bug Bounty Recon API
Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" from #HackerOne #Bugcrowd #Intigriti ...
Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
Cryptography Tool | RSA Attacks