Repository navigation

Bug Bounty

Website
Wikipedia: 维基百科

A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.

Hack-with-Github / Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

Hacking 安全 Bug Bounty Awesome Lists Android Fuzzing/Fuzz testing penetration-testing pentesting-windows 逆向工程

96491

9484

7 个月前

maurosoria / dirsearch

Web path scanner

fuzzer Fuzzing/Fuzz testing Python 安全 dirsearch Hacking pentesting penetration-testing Bug Bounty appsec wordlist hacking-tool Cybersecurity brute scanner enumeration pentest-tool red-teaming redteam

Python

13265

2400

2 个月前

nahamsec / Resources-for-Beginner-Bug-Bounty-Hunters

A list of resources for those interested in getting started in bug bounties

bug-bounty-hunters hackers xss Bug Bounty learn2hack Hacking pentest web-security 教学 ssrf

11466

1993

1 年前

yogeshojha / rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

安全 OSINT Reconnaissance recon-engine reconnaissance scanner scanner-web rengine information-gathering Bug Bounty Hacking scanning pentesting Cybersecurity penetration-testing

HTML

8102

1248

6 个月前

six2dez / reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Bug Bounty Hacking Reconnaissance pentest subdomain nuclei vulnerabilities scanner Fuzzing/Fuzz testing OSINT penetration-testing pentesting reconnaissance dns pentest-tool 安全

Shell

6658

1045

3 个月前

LasCC / HackTools

The all-in-one browser extension for offensive security professionals 🛠

reverse-shell Hacking hack-tools Chrome 插件 Firefox 插件 hacktools payloads xss-payloads hack msfvenom metasploit hackbar cheatsheet purpleteam redteam Bug Bounty

TypeScript

6232

691

7 个月前

j3ssie / osmedeus

A Workflow Engine for Offensive Security

scanning reconnaissance penetration-testing 安全 pentest-tool hacking-tool information-gathering Hacking OSINT Bug Bounty pentesting Go attack-surface attack-surface-management

5845

940

11 天前

pry0cc / axiom

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Bug Bounty tmux masscan massdns gau nuclei nmap httpx meg

Shell

4278

700

1 年前

skerkour / black-hat-rust

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Rust 安全 pentest pentesting offensive-security red-team audit beacon c2 Bug Bounty bug-hunting WebAssembly scanner phishing trojan virus Hacking Cybersecurity

Rust

4102

414

1 年前

zan8in / afrog

A Security Tool for Bug Bounty, Pentest and Red Teaming.

vulnerability-scanner poc penetration-testing afrog vulnerability-scanning-tools Bug Bounty pentest red-teaming

3985

438

14 小时前

dwisiswant0 / awesome-oneliner-bugbounty

A collection of awesome one-liner scripts especially for bug bounty tips.

Bug Bounty bugbountytips Bash one-liners Awesome Lists Reconnaissance Hacktoberfest

2914

606

1 年前

kpcyrd / sn0int

Semi-automatic OSINT framework and package manager

OSINT intelligence osint-framework certificate-transparency Rust 安全 security-scanner investigation reconnaissance Reconnaissance Lua pentesting location Bug Bounty

Rust

2292

204

7 个月前

inonshk / 31-days-of-API-Security-Tips

This challenge is Inon Shkedy's 31 days API Security Tips.

pentest api-pentest Bug Bounty api-security 安全 bugbountytips Cybersecurity

2146

339

3 年前

tom0li / collection-document

Collection of quality safety articles. Awesome articles.

dns pentest list 安全 sec Hacking Bug Bounty fuzz xss research GitHub waf Java hacker redteam bounty-hunters Web cloud Awesome Lists

2075

515

1 年前

danieldurnea / FBI-tools

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

forensics OSINT Cybersecurity Hacking security-automation 安全 Awesome Lists incident-response penetration-testing reconnaissance pentesting Bug Bounty

2061

313

5 个月前

haccer / subjack

Subdomain Takeover tool written in Go

Go hostile subdomain takeover subdomain-takeover Bug Bounty pentesting Cybersecurity 安全

1991

352

2 年前

nsonaniya2010 / SubDomainizer

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Python 安全 security-automation subdomain-scanner subdomain-enumeration s3-bucket find-subdomains cloud-storage-services external-javascripts secrets secretfinder Bug Bounty

Python

1823

237

1 年前

wagiro / BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Bug Bounty burp-extensions burpsuite vulnerability-scanner vulnerability-detection

Java

1745

343

1 年前

xalgord / Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

Bug Bounty Hackathon-Kit Hacking owasp owasp-top-10 bugbountytips collection ethical-hacking

1623

258

1 年前