bugcrowd · GitHub Topics

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

翻译 - 此仓库包含适用于报告的漏洞赏金平台范围（例如Hackerone / Bugcrowd / Intigriti / etc）的每小时更新的数据转储

hackerone bugcrowd bug bounty vrp federacy hackenproof intigriti yeswehack

3.25 k

2 天前

screetsec / Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

翻译 - Sudomy是一个子域枚举工具，使用bash脚本创建，可以快速全面地分析域并收集子域。以HTML或CSV格式报告输出

Bug Bounty subdomain-enumeration scanner enumeration reconnaissance pentesting hackerone bugcrowd kali kali-linux Bash subdomain-scanner subdomain-finder 框架

Shell 2.1 k

8 个月前

0xmaximus / Galaxy-Bugbounty-Checklist

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Bug Bounty bug hackerone bugbountytricks bugbounty-tool bugbountytips bugbounty-reports bugbounty-checklist bugcrowd bugs ethical-hacking red-team red-teaming vulnerabilities vulnerability

1.45 k

1 年前

Zarcolio / sitedorks

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

bing yandex yahoo Google search OSINT Reconnaissance Python DuckDuckGo baidu Hacking Bug Bounty search-engines bugcrowd intigriti hackerone google-dorks Cybersecurity reconnaissance

Python 923

7 天前

alexbieber / Bug_Bounty_writeups

BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔

bug Bug Bounty bug-bounty-hunters bug-bounty-hunting bug-bounty-recon bugcrowd Facebook Google hackerone

Python 835

3 年前

arkadiyt / bounty-targets

This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo

hackerone bugcrowd bug bounty vrp federacy hackenproof intigriti yeswehack

Ruby 657

1 个月前

appsecco / bugcrowd-levelup-subdomain-enumeration

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

censys subdomain dnssec pentesting enumeration OSINT bugcrowd certificate-transparency dns domains

Python 634

6 年前

yhy0 / Jie

#网络爬虫#Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gath...

shiro-exp vulnerability vulnerability-detection vulnerability-scanners 爬虫 scan vul scanner bugcrowd hackerone

Go 570

8 个月前

bugcrowd / vulnerability-rating-taxonomy

Bugcrowd’s baseline priority ratings for common security vulnerabilities

bugcrowd taxonomy vulnerabilities rating

Python 467

1 天前

M4DM0e / DirDar

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

翻译 - DirDar是一个工具，用于搜索（403禁止访问）目录来破坏它并在其上获得目录清单

Hacking hackerone bugcrowd Bug Bounty bypass pentest Go

Go 449

1 年前

sdushantha / dora

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

翻译 - 根据 RegEx 查找暴露的 API 密钥，并获取找到的一些密钥的利用方法

Bug Bounty Cybersecurity apikeys Exploit hackerone bugcrowd Regular expression Python ethical-hacking

Python 334

1 年前

root4loot / rescope

Bugbounty scope tool

Bug Bounty burp burpsuite 安全 Cybersecurity bugcrowd hackerone intigriti owasp-zap yeswehack hackenproof

Go 325

7 天前

pdelteil / BugBountyReportTemplates

List of reporting templates I have used since I started doing BBH.

Bug Bounty reports templates hackerone bugcrowd intigriti

282

6 个月前

BitTheByte / Monitorizer

Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools

Bug Bounty bugcrowd hackerone subdomain-enumeration

Python 272

8 个月前

serain / bbrecon

Python library and CLI for the Bug Bounty Recon API

hackerone bugcrowd Bug Bounty federacy hackenproof yeswehack bugbountytips Reconnaissance web-security 安全 Hacking bug-bounty-recon Cybersecurity OSINT

Python 223

4 年前

ARPSyndicate / bug-bounty-domains

Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]

Bug Bounty dataset Reconnaissance bug-bounty-recon bounty bounty-hunters bug reconnaissance subdomain bugcrowd hackenproof hackerone intigriti yeswehack Hacktoberfest hacktoberfest2024

215

6 个月前

YasserGersy / cazador_unr

Hacking tools

Hacking hackerone Bug Bounty bughunting bugcrowd dns HTTP subdomains tcp Fuzzing/Fuzz testing owasp directory-lister poc csrf xss sqli rce 自动化

144

1 个月前

SKVNDR / FastDork

⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" from #HackerOne #Bugcrowd #Intigriti ...

dork bugcrowd hackerone Chrome 插件 Google Bug Bounty Cybersecurity pentest-tool intigriti

JavaScript 133

1 年前

BitTheByte / Eagle

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

xss ssrf Bug Bounty Common Vulnerabilities and Exposures (CVE)takeover Python Hacking ftp bugcrowd hackerone

Python 117

2 年前