Python bugbounty-tool

Open-source Python projects categorized as bugbounty-tool
Edit details
Topics: Bugbounty Recon Reconnaissance Penetration Testing Pentesting
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
Sponsored

Top 10 Python bugbounty-tool Projects

  • malicious-pdf

    đź’€ Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

    • Project mention: Securing PDF Generators Against SSRF Vulnerabilities | /r/netsec | 2023-05-30

    Wrote a tool two years ago that does some of the PDF-tests. But more could be added: https://github.com/jonaslejon/malicious-pdf

  • inql

    InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • GRecon

    Another version of katana, more automated but less stable. the purpose of this small tool is to run a Google based passive recon against your scope.

  • webstor

    WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.

  • Discord-Recon

    Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server

  • s1c0n

    simple recon tool to help you for searching vulnerability on web server

  • CloudSniffer

    CloudSniffer is a powerful tool designed to aid in the discovery of the real IP address of a website protected by Cloudflare. It leverages brute force techniques by testing a list of IP addresses and analyzing the status codes returned by the server to uncover the actual IP address of the target website.

    • Project mention: Privacy | /r/selfhosted | 2023-07-01

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • OrgASM

    A tool for Oragnized ASM (Attack Surface Mapper). Subdomains enumeration, IPs scans, Vulnerability assesment...

    • Project mention: New Attack Surface Discovery tool : OrgASM | /r/cybersecurity | 2023-05-31

  • Recon-Plus

    A Unified Reconnaissance Tool for Pentesting

  • BurpPro-FastCrawler

    The simplest way to integrate your subdomain enum outputs with Burp Pro (Fast Crawler)

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Index

What are some of the best open-source bugbounty-tool projects in Python? This list will help you:

Project Stars
1 malicious-pdf 2,585
2 inql 1,462
3 GRecon 210
4 webstor 150
5 Discord-Recon 69
6 s1c0n 59
7 CloudSniffer 52
8 OrgASM 25
9 Recon-Plus 9
10 BurpPro-FastCrawler 7

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com