awesome-bugbounty-tools
awesome-vulnerable-apps
awesome-bugbounty-tools | awesome-vulnerable-apps | |
---|---|---|
11 | 7 | |
3,565 | 846 | |
- | - | |
5.4 | 4.5 | |
8 days ago | 14 days ago | |
Creative Commons Zero v1.0 Universal | Creative Commons Zero v1.0 Universal |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
awesome-bugbounty-tools
- Automated recognition frameworks?
- Automated tools
-
A vast collection of security tools
I'm wondering if we can exchange data with https://github.com/vavkamil/awesome-bugbounty-tools
- Burp Suite Pro Alternatives
- Automation
- Vulnerability scanners for a lot of domains
-
What are you all using for taking screenshots?
https://github.com/vavkamil/awesome-bugbounty-tools/#Screenshots
-
Hi! I'm new to bug bounty and I decided to start to make a blog to document my journey and to hopefully inspire other beginners or people who aren't sure if they should start, to start. I just made my first post and had some questions at the end that I was hoping someone would be able to answer?
This is all provided in https://github.com/vavkamil/awesome-bugbounty-tools/ which I already gave you, but you only did the first step (subs + screenshots).
-
Quick Question After Watching The Bug Hunter's Methodology V4.0
Check https://github.com/vavkamil/awesome-bugbounty-tools/ there is always something you can do with them :)
- Awesome bug bounty tools
awesome-vulnerable-apps
- The next step
-
Where to practice Owasp mobile top 10 vulnerabilities?-
As well as a whole list of vulnerable applications for different fields, including mobile of course: https://github.com/vavkamil/awesome-vulnerable-apps
-
Juice shop
OWAS PJuice Shop is awesome, you can find more apps for practice here https://github.com/vavkamil/awesome-vulnerable-apps/
-
Vulhub: Pre-Built Vulnerable Environments Based on Docker-Compose
https://github.com/vavkamil/awesome-vulnerable-apps#owasp-to... :
> OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
And there's a book, an Open Source Official Companion Guide book titled "Pwning Juice Shop":
- How to practice hacking topics
- Need some resources
-
Does doing CTF help?
It depends on how the CTF is designed. I would suggest to rather try the "vulnerable by design" exercises which I'm collecting here https://github.com/vavkamil/awesome-vulnerable-apps
What are some alternatives?
awesome-oneliner-bugbounty - A collection of awesome one-liner scripts especially for bug bounty tips.
bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
webscreenshot - A simple script to screenshot a list of websites
juice-shop - OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
jaeles - The Swiss Army knife for automated Web Application Testing
awesome-ethical-hacking-resources - π π Awesome list about all kinds of resources for learning Ethical Hacking and Penetration Testing.
golang-tls - Simple Golang HTTPS/TLS Examples
Interlace - Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
personal-security-checklist - π A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
Android-InsecureBankv2 - Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities
awesome-python-security - Awesome Python Security resources πΆππ
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF