33 Repositories
Go bugbounty Libraries
Cloud IP address ranges lookup tool + DNS subdomain enumeration + Certificate Transparency
Cloud edge Lookup an IP to find the cloud provider and other details based on the provider's published JSON data Cloud edge is a recon tool focused on
35 Dec 12, 2022
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites by using passive online sources
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
6.7k Jan 1, 2023
A Target Tracking , NoteTaking , CheckLists and Data Management GUI App for Bug Hunter's and Pentesters.
Screenshots Features β’ Installation β’ Usage β’ Features β’ Notes β’ Sandman A Target Tracking , NoteTaking , CheckLists and Data Management GUI App for B
29 Dec 25, 2022
π Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URL and Role.
Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URL and Role. URLs and Roles are managed as YAML-based
313 Dec 20, 2022
log4jshell vulnerability scanner for bug bounty
log4shell-looker a log4jshell vulnerability scanner for bug bounty (Written in G
21 Dec 10, 2022
A passive reconnaissance tool for known URLs discovery
A passive reconnaissance tool for known URLs discovery - it gathers a list of URLs passively using various online sources.
187 Dec 20, 2022
Fleex allows you to create multiple VPS on cloud providers and use them to distribute your workload.
Fleex allows you to create multiple VPS on cloud providers and use them to distribute your workload. Run tools like masscan, puredns, ffuf, httpx or a
176 Dec 31, 2022
An OOB interaction gathering server and client library
Interactsh An OOB interaction gathering server and client library Features β’ Usage β’ Interactsh Client β’ Interactsh Server β’ Interactsh Integration β’
2.1k Jan 2, 2023
Session Cookie Finder
goSCF Session Cookie Finder - It helps you to find the main session cookie/s (upto 4) from the bunch of cookies, which is responsible for the user aut
8 May 28, 2022
urlhunter is a recon tool that allows searching on URLs that are exposed via shortener services such as bit.ly and goo.gl.
a recon tool that allows searching on URLs that are exposed via shortener services
1.3k Jan 7, 2023
A tool get level of subdomain from 1....n
dlevel Get any level of subdomain from 1....N Install go get -u github.com/MPaandeey/dlevel Usage Example π files.txt hackerone.com info.hackerone.co
7 Jul 6, 2022
Another JS scanner but in Go
NipeJS Read list of JS files and look for sensitive data via regex. β Install go get github.com/i5nipe/nipejs β Regular expressions Download the file
18 Nov 9, 2022
Fleex allows you to create multiple VPS on cloud providers and use them to distribute your workload.
Fleex allows you to create multiple VPS on cloud providers and use them to distribute your workload. Run tools like masscan, puredns, ffuf, httpx or anything you need and get results quickly!
177 Jan 6, 2023
ChangeTower is intended to help you watch changes in webpages and get notified of any changes written in Go
ChangeTower is intended to help you watch changes in webpages and get notified of any changes written in Go
34 Nov 17, 2022
a Go code to detect leaks in JS files via regex patterns
a Go code to detect leaks in JS files via regex patterns
113 Nov 13, 2022
A scanner/exploitation tool written in GO, which leverages Prototype Pollution to XSS by exploiting known gadgets.
ppmap A simple scanner/exploitation tool written in GO which automatically exploits known and existing gadgets (checks for specific variables in the g
379 Jan 9, 2023
Extract endpoints marked as disallow in robots files to generate wordlists.
roboXtractor This tool has been developed to extract endpoints marked as disallow in robots.txt file. It crawls the file directly on the web and has a
39 Dec 21, 2022
A tool to filter URLs by parameter count or size
GoFilter A tool to filter URLs by parameter count or size. This tool requires unique sorted URL list. For example: cat hosts.txt | sort -u sorted &&
7 Dec 18, 2022
Gospider - Fast web spider written in Go
GoSpider GoSpider - Fast web spider written in Go Painless integrate Gospider into your recon workflow? Enjoying this tool? Support it's development a
1.8k Dec 31, 2022
Little Bug Bounty & Hacking ToolsβοΈ
Little Bug Bounty & Hacking Tools βοΈ
210 Jan 7, 2023
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place
cent Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place Inst
461 Jan 9, 2023
Take a list of domains and scan for endpoints, secrets, api keys, file extensions, tokens and more...
Take a list of domains and scan for endpoints, secrets, api keys, file extensions, tokens and more... Coded with π by edoardottt. Share on Twitter! P
654 Dec 25, 2022
httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
Features β’ Installation β’ Usage β’ Running httpx β’ Notes β’ Join Discord httpx is a fast and multi-purpose HTTP toolkit allow to run multiple probers us
4.2k Jan 8, 2023
ππ¦ DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Finder Of XSS, and Dal(λ¬) is the Korean pronunciation of moon. What is DalFox π π¦ DalFox is a fast, powerful parameter analysis and XSS scanner, bas
2.2k Jan 5, 2023
Hetty is an HTTP toolkit for security research.
Hetty is an HTTP toolkit for security research. It aims to become an open source alternative to commercial software like Burp Suite Pro, with powerful
5.1k Dec 27, 2022
βοΈ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting Family project Table of Contents WHW-Tools Weapons Awesome Bookmarkl
2.6k Jan 5, 2023
The fastest dork scanner written in Go.
go-dork The fastest dork scanner written in Go. There are also various search engines supported by go-dork, including Google, Shodan, Bing, Duck, Yaho
725 Jan 1, 2023
Listing git repository from URL/User/Org
This tool is available when the repository, such as github, is included in the bugbounty scope. Sometimes specified as an org name or user name rather than a specific repository, you can use this tool to extract url from all public repositories included in the org/user.
48 Dec 20, 2022
π΅ Gee is tool of stdin to each files and stdout
Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addition, it was written as go. which provides output to stdout and files.
75 Nov 17, 2022
A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting Family project Table of Contents Weapons Contribute Thanks to con
445 Jan 3, 2023
sigurls is a reconnaissance tool, it fetches URLs from AlienVault's OTX, Common Crawl, URLScan, Github and the Wayback Machine.
sigurls is a reconnaissance tool, it fetches URLs from AlienVault's OTX, Common Crawl, URLScan, Github and the Wayback Machine. DiSCLAIMER: fe
128 May 22, 2021
sigurlx a web application attack surface mapping tool.
sigurlx a web application attack surface mapping tool, it does ...:
31 Jul 24, 2021
MemBi is all the members of bugbounty and infosec project.
Member of Bugbounty and Infosec π€ What is MemBi? MemBi is all the members of bugbounty and infosec project. If you don't know who to follow, see! π
32 Sep 23, 2022