Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.
-
Updated
Jun 1, 2024
Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.
The First Open Source Bug Bounty Platform
Ivanti ICS - Authentication Bypass
LearnDash LMS < 4.10.3 - Sensitive Information Exposure
Cisco Adaptive Security Appliance (ASA)/Firepower Threat Defense (FTD) - Local File Inclusion
Microsoft FrontPage Extensions Check (shtml.dll)
This tool is used to find shell history leaking
Citrix Netscaler ADC & Gateway v13.1-50.23 - Out-Of-Bounds Memory Read
Resources, repos and scripts for pentesters and bug bounty.
Discover new target domains using Content Security Policy
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
Subdomains analysis and generation tool. Reveal the hidden!
Recursively extract urls from a web page for reconnaissance.
All in one web Recon app
OFS is tool to remove out of scope domains from the subdomain files
This is a tool used by several security researchers to find Open Redirect Bug
This is a tool used by several security researchers to find Carriage Return Line Feed Injection Bug
Apache OFBiz 16.11.04 is susceptible to XML external entity injection (XXE injection)
Find Admin Pages is a simple and efficient Bash script for bug bounty, and security researchers. Its been written to search through source code for potential admin pages.
Find Admin Pages is a simple and efficient Bash script for bug bounty, and security researchers. Its been written to search through source code for potential admin pages.
Add a description, image, and links to the bugbounty-tool topic page so that developers can more easily learn about it.
To associate your repository with the bugbounty-tool topic, visit your repo's landing page and select "manage topics."