Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.
-
Updated
Jun 3, 2024
Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.
Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit
simple recon tool to help you for searching vulnerability on web server
EventON (Free < 2.2.8, Premium < 4.5.5) - Information Disclosure
BeHat Configuration file leaking
This tool is used to find shell history leaking
Sonatype Nexus Repository Manager 3 (LFI)
Ivanti ICS - Authentication Bypass
LearnDash LMS < 4.10.3 - Sensitive Information Exposure
Microsoft FrontPage Extensions Check (shtml.dll)
Citrix Netscaler ADC & Gateway v13.1-50.23 - Out-Of-Bounds Memory Read
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
A high-performance tool for identifying domain takeovers with support for custom fingerprints and resolver lists.
Discover new target domains using Content Security Policy
Subdomains analysis and generation tool. Reveal the hidden!
The First Open Source Bug Bounty Platform
Cisco Adaptive Security Appliance (ASA)/Firepower Threat Defense (FTD) - Local File Inclusion
Resources, repos and scripts for pentesters and bug bounty.
Recursively extract urls from a web page for reconnaissance.
All in one web Recon app
Add a description, image, and links to the bugbounty-tool topic page so that developers can more easily learn about it.
To associate your repository with the bugbounty-tool topic, visit your repo's landing page and select "manage topics."