Asset inventory of over 800 public bug bounty programs.
-
Updated
Jun 12, 2024 - Shell
A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.
Asset inventory of over 800 public bug bounty programs.
Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leaks.
[Custom || Automated] Curation & Collection of BugBounty Wordlists
📦 1000+ Statically Linked Binaries & Build Scripts for Android (arm64-v8a), Linux (aarch64 | x86-64), Windows (AMD64) :: https://bin.ajam.dev
The most exhaustive list of reliable DNS resolvers.
Hastly written Tools & Scripts for Personal Use Cases & Bug Bounties
this my repo with notes i take in penetration testing
All in One Advanced and Detailed Web Scanner with over 1000 plug-ins.
My useful files for penetration tests, security assessments, bug bounty and other security related stuff
This repository contains Bug Bounty writeups
A collection of various awesome lists for hackers, pentesters and security researchers. With repository stars⭐ and forks🍴
OWASP BLT is a bug logging tool to report issues and get points, companies are held accountable.
A Security Tool for Bug Bounty, Pentest and Red Teaming.
Vulnerability assessment and penetration testing automation and reporting platform for teams.
🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
This is my personal repo including bug bounty tips, tools collections, one lines I personally prefer while hunting, and so on. It is under development, so feel free to contribute.
Find subdomains by searching public certificate records
Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.