bugbounty-tool · GitHub Topics

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

翻译 - 🦊DalFox（XSS的查找器）/基于golang的参数分析和XSS扫描工具

xss 安全 Bug Bounty bugbounty-tool Go xss-scanner devsecops cicd-pipeline vulnerability xss-detection xss-bruteforce xss-exploit Hacktoberfest

Go 4 k

2 天前

jonaslejon / malicious-pdf

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

翻译 - 生成一堆带有回拨功能的恶意 pdf 文件。可以与 Burp Collaborator 一起使用

penetrationtesting pentesting pentesting-tools penetration-testing penetration-test pdf-generation pdf Bug Bounty bugbounty-tool Python redteam redteaming scanner

Python 2.95 k

8 天前

doyensec / inql

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

翻译 - InQL-GraphQL安全测试的Burp扩展

GraphQL security-scanner graphql-security api-documentation-tool 安全 burp-extensions burpsuite Bug Bounty bugbounty-tool penetration-testing

Python 1.6 k

13 小时前

0xmaximus / Galaxy-Bugbounty-Checklist

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Bug Bounty bug hackerone bugbountytricks bugbounty-tool bugbountytips bugbounty-reports bugbounty-checklist bugcrowd bugs ethical-hacking red-team red-teaming vulnerabilities vulnerability

1.45 k

1 年前

Viralmaniar / BigBountyRecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

翻译 - BigBountyRecon工具利用58种不同的技术，使用了各种Google工具和开源工具，以加快对目标组织的初步侦查过程。

OSINT Reconnaissance reconnaissance Cybersecurity offensive-security pentesting pentest-tool Bug Bounty bugbounty-tool bugbountytips red-team red-teaming blue-team purple-team purple-teams

C# 1.32 k

4 年前

dwisiswant0 / go-dork

#网络爬虫#The fastest dork scanner written in Go.

Go dork-scanner 爬虫 Cybersecurity Bug Bounty bugbounty-tool google-dorks vulnerability-scanners 安全

Go 1.18 k

1 年前

taielab / awesome-hacking-lists

#Awesome#平常看到好的渗透hacking工具和多领域效率工具的集合

Web Hacking Awesome Lists hacker hacking-tool kali-scripts hacking-tools pentesting-tools pentest-scripts bounty-hunters Bug Bounty bugbounty-tool

1.05 k

1 个月前

Autumn-27 / ScopeSentry

#网络爬虫#ScopeSentry-Cyberspace mapping, subdomain enumeration, port scanning, sensitive information discovery, vulnerability scanning, distributed nodes

Bug Bounty bugbounty-tool 爬虫 dirscanner subdomain-enumeration urlscan vulnerability-scanners

Python 1.01 k

4 天前

KathanP19 / JSFScan.sh

Automation for javascript recon in bug bounty.

bugbounty-tool Bug Bounty

Shell 959

2 年前

robotshell / magicRecon

#安全#MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in ...

subdomain bug bugbounty-tool Bug Bounty vulnerability-scanners scanner 工具 Cybersecurity bugbountytricks Bash subdomains-enumeration xss-vulnerability sql-injection nuclei

Shell 926

8 个月前

sh377c0d3 / Payloads

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

翻译 - 渗透测试仪和Bug赏金猎人的有效负载库

bugbounty-tool Bug Bounty payload payloads payloads-database penetration-testing

PHP 895

2 年前

bitquark / shortscan

An IIS short filename enumeration tool

Bug Bounty 安全 security-scanner iis pentesting pentesting-tools vulnerability-detection vulnerability-scanners redteam redteam-tools security-automation bugbounty-tool

Go 881

4 个月前

R0X4R / Garud

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

Bug Bounty bugbountytips bugbounty-tool reconnaissance subdomain-takeover Go Bash penetration-testing penetration-testing-tools vulnerability vulnerability-scanner

Shell 783

2 年前

dwisiswant0 / ppfuzz

A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀

prototype-pollution Bug Bounty bugbounty-tool bugbountytips vulnerability-scanners Rust 安全 Chromium

Rust 606

2 年前

KathanP19 / Gxss

A tool to check a bunch of URLs that contain reflecting params.

Go Bug Bounty bugbounty-tool xss-detection xss

Go 564

7 个月前

chiasmod0n / chiasmodon

Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including do...

asn attack-surface Bug Bounty bugbounty-tool cidr credentials email-enumeration emails information-gathering intelligence intelligence-analysis OSINT reconnaissance subdomain-enumeration subdomains

Python 555

6 个月前

kleiton0x00 / ppmap

A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.

翻译 - 一个用 GO 编写的扫描器/漏洞利用工具，它通过利用已知的小工具来利用 Prototype Pollution to XSS。

prototype-pollution Bug Bounty Cybersecurity bugbounty-tool xss xss-vulnerability xss-exploitation xss-detection

Go 502

3 年前

taielab / Taie-Bugbounty-killer

挖掘国内外漏洞平台必备的自动化捡钱赏金技巧，看了并去做了捡钱如喝水。

Bug Bounty bugbounty-tool bugbountytips

413

4 年前

edoardottt / csprecon

Discover new target domains using Content Security Policy

Hacking Bug Bounty bugbounty-tool Reconnaissance reconnaissance information-retrieval 安全 content-security-policy csp Go offensive-security offensivesecurity Hacktoberfest

Go 399

9 天前

edoardottt / missing-cve-nuclei-templates

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

Common Vulnerabilities and Exposures (CVE)nuclei nuclei-templates Bug Bounty 安全自动化 bug-hunting bugbounty-tool cve-scanning Hacking bugbountytips penetration-testing pentesting vulnerability-detection vulnerability-scanners nuclei-engine projectdiscovery

Shell 348

10 天前