A list of useful payloads and bypass for Web Application Security and Pentest/CTF

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Robust, fast, intuitive plain text accounting tool with CLI, TUI and web interfaces.

Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.

Javascript and SVG odometer effect library with motion blur

A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot), sqlite, excel and d2-lang. Simply put it's nmap converter.

This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo

🎯 Server Side Template Injection Payloads

BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.

Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Burp Bounty profiles compilation, feel free to contribute!

The unofficial HackerOne disclosure Timeline

The official Musicoin Desktop Wallet Application

Bounty program for improvements to Tcl and certain Tcl packages

ThreatTracer - A python Script to identify CVE by name & version by @FR13ND0x7f

Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.

Bug Bounty Vps Setup Tools

Misc bounty and vulndisc things