Script useful for finding clickjacking from a given list of websites
-
Updated
May 3, 2021 - Python
Script useful for finding clickjacking from a given list of websites
EventON (Free < 2.2.8, Premium < 4.5.5) - Information Disclosure
It is obvious... A GraphQL Introspection Query Scanner. If it returns code 200 with the queries, it means the server has improper access control.
BeHat Configuration file leaking
Scripts written by me while doing bugbounty
Test Swagger/OpenAPI APIs
Tool to remove ANSI characters from text files.
Python script to check GitHub accounts for world-editable wiki pages
A tool for spider multiple URLs & check for sensitive variables in code.
A Python script using the Censys API to search for internet-facing hosts based on custom queries
CGI Print ENV leaking
Oracle WebLogic Server (LFI)
Sonatype Nexus Repository Manager 3 (LFI)
Cisco Adaptive Security Appliance (ASA)/Firepower Threat Defense (FTD) - Local File Inclusion
you can recive live programs for Bug Bounty from Ravro.ir
This tool is used to find shell history leaking
Tryxia (τρυξια) - Goddess of the River Styx and protector of hidden knowledge. - Under super slow development
Microsoft FrontPage Extensions Check (shtml.dll)
Export domains from openbugbounty.org
SOUND4 Impact/Pulse/First/Eco <=2.x - Information Disclosure
Add a description, image, and links to the bugbounty-tool topic page so that developers can more easily learn about it.
To associate your repository with the bugbounty-tool topic, visit your repo's landing page and select "manage topics."