bughunter

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

LazyHunter is an automated reconnaissance tool designed for bug hunters, leveraging Shodan's InternetDB and CVEDB APIs

Collection of XSS Payloads for fun and profit

Docker Remote API Scanner and Exploit

A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF

Enhanced BurpGPT 是一个强大的 Burp Suite 插件。通过分析指定的 HTTP 请求和响应，帮助安全测试人员更快速地发现潜在的安全漏洞。

This repository stores various roadmap(Mindmaps) for bug bounty Hunter, pentester, offensive(red team), defensive(blue team) and security Professional people

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Detect Program Bug Bounty

🔍 A simple tool to obtain long lists of ips from domains using goroutines

Red teaming is an attack technique used in cyber security to test how an organisation would respond to a genuine cyber attack. It is done through an Ethical Hacking team or similar offensive security team.

This is a tool for bug hunters

Rezon - Automated Bug Hunting Recon Tool

Priv8 Tools Software Mass Dork Auto Exploit.

TextFilterFuzzer For Directory Fuzzing - filter for (e.g, Not Found, 404, Not Accepted)

Record the cases that I think are interesting in bughunt, which will be constantly updated, 记录挖洞中个人觉得有意义的tips, 会持续更新

Log4j RCE - (CVE-2021-44228)

Automated Tools Pentest

This program provides a Graphical User Interface (GUI) to convert images into "invisible" images that can bypass Instagram’s visibility on the Android app. The bug works exclusively on the Instagram Android app and this tool operates on both Linux and Windows platforms.