Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.

HTTP parameter discovery suite.

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Basic subdomain discovery tool

Collection of Facebook Bug Bounty Writeups

Tutorials and Things to Do while Hunting Vulnerability.

Chat-bot using telegram

Open-source landscape map for healthcare-related blockchains

A web-based management system that gather blood donors , connect them with needy people , predict disease from symptoms and sets an appointment with the doctor at the touch of your fingertips!

The Swiss Army knife for automated Web Application Testing

A collection of useful Python hacking scripts for beginners

安卓Java层多功能追踪脚本

All videos and source code from thenewboston Docker tutorial series.

Automated & Manual Wordlists provided by Assetnote

Hunt down social media accounts by username across social networks

Recon for Department of Defense HackerOne program

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

Most advanced XSS scanner.

BBT - Bug Bounty Tools (examples💡)

Admin Panel Finder

Generates permutations, alterations and mutations of subdomains and then resolves them

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal

Fast subdomains enumeration tool for penetration testers

🎯 XML External Entity (XXE) Injection Payload List