This is your work, valued
Bug Bounty and other security things
gitGraber. gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
2.3kReconAIzer. A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
901JSpector. A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
379Wordlist. Wordlists for Bug Bounty
23SecLists. SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
9Awesome-XSS-Payloads. Exotic and uncommon XSS Vectors to hit the target as quickly as possible.
5PayloadsAllTheThings. HTML
4Encrypter-Metasploit. Ruby
4Amass. In-depth Attack Surface Mapping and Asset Discovery
2massdns. A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
2RegExAPI. list of regex for apis
2XSS-Payloads. List of advanced XSS payloads
1rengine. reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.
1truffleHogRegexes. These are the regexes that power truffleHog
1Best-README-Template. An awesome README template to jumpstart your projects!
1bounty-targets-data. This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
1scapy. Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.
1BB-legal-FR. Quelques conseils autour des obligations légales, fiscales et juridique pour la pratique du Bug Bounty en France
1Open-Redirect-Payloads. Open Redirect Payloads
1XXE-study. This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a playground to teach or test with Vulnerability scanners / WAF rules / Secure Configuration settings.
1