shittyRECON is a Python-based bug bounty reconnaissance automation tool that helps you automate various aspects of your recon process
-
Updated
May 26, 2023
A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.
shittyRECON is a Python-based bug bounty reconnaissance automation tool that helps you automate various aspects of your recon process
"Unveiling Vulnerabilities - Bug Hunting with Responsible Disclosure"
a recon framework allow you to wrap any recon tool you want
Find all keywords for your subdomain or folder search
Writing my first bug bounty report. Was rewarded with 10k INR.
A tool to help find subdomain takeover vulnerabilities
WAF bypass enumeration tool that based on history records discover unprotected IP address
Automated authorization checks with multiple headers tool written in golang
Go tool that detects which email addresses have domains which are able to be registered
Finding subdomain using subfinder
A command-line utility for virtual host discovery
performs various mutations on IPv4 addresses, such as converting to binary, hex, octal, urlencoded, and more
This is a tool to automate the search for subdomains on the website crt.sh.
Get HTTP status codes for a list of URLs
automated get subdomains every hour and scan it by nuclei
Web Security Insights & Case Studies
Parameter Extractor written in golang
This is my personal repo including bug bounty tips, tools collections, one lines I personally prefer while hunting, and so on. It is under development, so feel free to contribute.
Reverse Shell as a Service