Fast passive subdomain enumeration tool.
-
Updated
Nov 5, 2025 - Go
#
Bug Bounty
A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.
Here are 363 public repositories matching this topic...
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
-
Updated
Nov 6, 2025 - Go
A Workflow Engine for Offensive Security
go golang security osint hacking penetration-testing bug-bounty pentesting bugbounty scanning hacking-tool information-gathering security-tools reconnaissance pentest-tool attack-surface attack-surface-management
-
Updated
Aug 8, 2025 - Go
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
ssh golang tools attack nmap brute-force recon nuclei auto bugbounty vulnerability-detection hacker vulnerability-scanners security-scanner 0day security-tools pentest-tool hacktools bugbounty-tools vulnerabilities-scan
-
Updated
Jul 12, 2024 - Go
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
-
Updated
Dec 21, 2024 - Go
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
golang security xss vulnerability bugbounty xss-scanner xss-detection hacktoberfest devsecops xss-exploit xss-bruteforce cicd-pipeline bugbounty-tool
-
Updated
Nov 4, 2025 - Go
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
go golang security crawler scraper osint crawling penetration-testing infosec pentesting recon bugbounty hacktoberfest security-tools endpoints reconnaissance secret-keys redteam endpoint-discovery secrets-detection
-
Updated
Sep 30, 2025 - Go
Quickly discover exposed hosts on the internet using multiple search engines.
-
Updated
Oct 16, 2025 - Go
The Swiss Army knife for automated Web Application Testing
-
Updated
May 8, 2024 - Go
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
dns hacking subdomain recon bugbounty dns-resolution dns-bruteforcer dns-resolver dns-lookup massdns subdomain-bruteforcing
-
Updated
Nov 18, 2024 - Go
Subdomain Takeover tool written in Go
go golang security subdomain bug-bounty infosec pentesting bugbounty takeover hostile subdomain-takeover
-
Updated
Aug 13, 2023 - Go
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
security waf owasp bugbounty web-application-firewall security-tools web-application-security security-testing graphql-security api-security rest-security grpc-security
-
Updated
Jul 31, 2025 - Go
a recon tool that allows searching on URLs that are exposed via shortener services
-
Updated
Jan 23, 2025 - Go
Subdomain takeover vulnerability checker
-
Updated
Sep 10, 2024 - Go
OSINT tools and more but without API key
security osint subdomain bug-bounty infosec pentesting asn recon bugbounty ip-range subdomains security-tools reconnaissance bugbountytips ip-osint bugbounty-tools
-
Updated
Jun 29, 2025 - Go
🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.
go http security tool pentesting ctf bugbounty pentest bypass reconnaissance 403 websec waf-bypass 403-bypass
-
Updated
Jun 27, 2025 - Go
- Followers
- 615 followers
- Website
- github.com/topics/bugbounty
- Wikipedia
- Wikipedia