Repository navigation

Bug Bounty

Website
Wikipedia: 维基百科

A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.

Hack-with-Github / Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

Hacking 安全 Bug Bounty Awesome Lists Android Fuzzing/Fuzz testing penetration-testing pentesting-windows 逆向工程

91445

9225

3 个月前

maurosoria / dirsearch

Web path scanner

fuzzer Fuzzing/Fuzz testing Python 安全 dirsearch Hacking pentesting penetration-testing Bug Bounty appsec wordlist hacking-tool Cybersecurity brute scanner enumeration pentest-tool red-teaming redteam

Python

12798

2355

2 个月前

nahamsec / Resources-for-Beginner-Bug-Bounty-Hunters

A list of resources for those interested in getting started in bug bounties

bug-bounty-hunters hackers xss Bug Bounty learn2hack Hacking pentest web-security 教学 ssrf

11177

1968

9 个月前

yogeshojha / rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

安全 OSINT Reconnaissance recon-engine reconnaissance scanner scanner-web rengine information-gathering Bug Bounty Hacking scanning pentesting Cybersecurity penetration-testing

HTML

7865

1194

2 个月前

six2dez / reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Bug Bounty Hacking Reconnaissance pentest subdomain nuclei vulnerabilities scanner Fuzzing/Fuzz testing OSINT penetration-testing pentesting reconnaissance dns pentest-tool 安全

Shell

6194

981

2 天前

LasCC / HackTools

The all-in-one browser extension for offensive security professionals 🛠

reverse-shell Hacking hack-tools Chrome 插件 Firefox 插件 hacktools payloads xss-payloads hack msfvenom metasploit hackbar cheatsheet purpleteam redteam Bug Bounty

TypeScript

6042

677

3 个月前

j3ssie / osmedeus

A Workflow Engine for Offensive Security

scanning reconnaissance penetration-testing 安全 pentest-tool hacking-tool information-gathering Hacking OSINT Bug Bounty pentesting Go attack-surface attack-surface-management

5562

907

6 小时前

pry0cc / axiom

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Bug Bounty tmux masscan massdns gau nuclei nmap httpx meg

Shell

4201

678

7 个月前

skerkour / black-hat-rust

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Rust 安全 pentest pentesting offensive-security red-team audit beacon c2 Bug Bounty bug-hunting WebAssembly scanner phishing trojan virus Hacking Cybersecurity

Rust

4024

403

9 个月前

zan8in / afrog

A Security Tool for Bug Bounty, Pentest and Red Teaming.

vulnerability-scanner poc penetration-testing afrog vulnerability-scanning-tools Bug Bounty pentest red-teaming

3790

415

10 天前

dwisiswant0 / awesome-oneliner-bugbounty

A collection of awesome one-liner scripts especially for bug bounty tips.

Bug Bounty bugbountytips Bash one-liners Awesome Lists Reconnaissance Hacktoberfest

2819

598

9 个月前

kpcyrd / sn0int

Semi-automatic OSINT framework and package manager

OSINT intelligence osint-framework certificate-transparency Rust 安全 security-scanner investigation reconnaissance Reconnaissance Lua pentesting location Bug Bounty

Rust

2190

187

3 个月前

inonshk / 31-days-of-API-Security-Tips

This challenge is Inon Shkedy's 31 days API Security Tips.

pentest api-pentest Bug Bounty api-security 安全 bugbountytips Cybersecurity

2119

333

3 年前

tom0li / collection-document

Collection of quality safety articles. Awesome articles.

dns pentest list 安全 sec Hacking Bug Bounty fuzz xss research GitHub waf Java hacker redteam bounty-hunters Web cloud Awesome Lists

2051

515

7 个月前

haccer / subjack

Subdomain Takeover tool written in Go

Go hostile subdomain takeover subdomain-takeover Bug Bounty pentesting Cybersecurity 安全

1961

346

2 年前

danieldurnea / FBI-tools

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

forensics OSINT Cybersecurity Hacking security-automation 安全 Awesome Lists incident-response penetration-testing reconnaissance pentesting Bug Bounty

1920

295

1 个月前

nsonaniya2010 / SubDomainizer

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Python 安全 security-automation subdomain-scanner subdomain-enumeration s3-bucket find-subdomains cloud-storage-services external-javascripts secrets secretfinder Bug Bounty

Python

1794

234

1 年前

wagiro / BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Bug Bounty burp-extensions burpsuite vulnerability-scanner vulnerability-detection

Java

1721

343

1 年前

xalgord / Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

Bug Bounty Hackathon-Kit Hacking owasp owasp-top-10 bugbountytips collection ethical-hacking

1543

249

7 个月前