This repository updates latest Bug Bounty medium writeups every 10 minutes, https://readmedium.com/Medium_URL, https://archive.ph/Medium_URL, https://freedium.cfd/Medium_URL

GoBypass403 is a tool designed to help security professionals test and bypass 403 Forbidden errors on web applications. It streamlines the penetration testing process, making it easier to identify vulnerabilities and enhance web security. 🛠️💻

一个用Go语言编写的强大且灵活的域名注册可用性检查工具 A powerful and flexible domain name availability checker written in Go. This tool helps you find available domain names based on various patterns and filters.

Fetches javascript file from a list of URLS or subdomains.

Converting trickest and chaos bbp targets in json, updates every 12 hour

Community curated list of search queries for various products across multiple search engines.

A high-performance technology detection tool built with Go, leveraging the projectdiscovery wappalyzergo library to identify web technologies and frameworks.

Custom wordlist, updated regularly

Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration

Introducing Varunastra: an innovative tool designed to strengthen the security of Docker environments. Varunastra is specifically engineered to detect and help mitigate vulnerabilities within Docker.

Fast passive subdomain enumeration tool.

Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

vulntechx is a powerful security tool that automates vulnerability scanning based on technology stack detection. It intelligently processes hosts through tech stack identification and executes targeted scans using tools like Nuclei and httpx.

gosqli is a fast and simple tool for detecting blind SQL injection vulnerabilities. It supports scanning URLs with custom payloads, parallel requests, and response time-based verification.

Scan for misconfigured S3 buckets across S3-compatible APIs!

Easy wordlist generator tool for backup files.

favinfo scrapes favicon in HTML code and many other different ways.

A high-performance command-line utility for processing and managing unique lines from input streams. Combining the functionality of sort, uniq, and tee, unew efficiently filters duplicates while offering advanced features like file splitting, shuffling, and case-insensitive processing.