#

Bug Bounty

A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.

Here are 35 public repositories matching this topic...

vah13 / BurpCRLFPlugin

Another plugin for CRLF vulnerability detection

plugin scanner bugbounty burp crlf vulnerability-detection

Updated Jan 25, 2017
Java

BitTheByte / BitTraversal

Burpsuite Plugin to detect Directory Traversal vulnerabilities

java web traversal bugbounty burp-plugin burpsuite burp-extensions burpsuite-extender path-traversal

Updated Jul 22, 2021
Java

BFAC-Burp-Extension

sec-it / BFAC-Burp-Extension

Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)

backup-files recon bugbounty pentest burpsuite burp-extensions

Updated Aug 9, 2021
Java

llamaonsecurity / rio

A handy plugin for copying requests/responses directly from Burp, some extra magic included.

reporting bug-bounty bugbounty security-tools reporting-tool bug-bounty-hunters bugbounty-tool

Updated Oct 15, 2021
Java

1in9e / Apache-Log4j2-RCE

Apache Log4j2 RCE( CVE-2021-44228)验证环境

java security apache rce bugbounty log4j2 cve-2021-44228

Updated Dec 10, 2021
Java

dhunt12 / Android-InsecureBankv2

Vulnerable Android application for developers and security researchers to learn about Android penetration testing/ bug bounty hunting. Updated to run with Python 3.

android python3 pentesting bugbounty vulnerable-application

Updated Jan 2, 2022
Java

Puliczek / CVE-2021-44228-PoC-log4j-bypass-words

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

security exploit log4j hacking cybersecurity poc pentesting writeups bugbounty cve pentest payload red-team bugbounty-writeups security-writeups cve-2021-44228 bugbounttips cve-2021-45046 cve-2021-45105

Updated Jan 15, 2022
Java

k2haxor / HACK-THEM-ALL

Hack like a pro

hacking penetration-testing exploits pentesting bugbounty

Updated May 12, 2022
Java

rahulkadavil / Buggyapp

Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application pentesting. This is build for beginners to learn basics about Android application pentesting

android pentesting bugbounty

Updated Jun 4, 2022
Java

langu-xyz / ASScan

Hello, Attack Surface Scan, BurpSuite完全被动扫描插件，不主动发送任何请求，适合挂机使用。

bugbounty burpsuite websecurity

Updated Jul 10, 2022
Java

alanEG / Sock

extract social media accounts and check if possible to hijacking

social-media osint bug-bounty bugbounty burp burpsuite burp-extensions soical

Updated Dec 19, 2022
Java

A0WaQ4 / BurpCRLFScan

使用java编写的CRLF-Injection-burp被动扫描插件

java bugbounty burp-plugin security-tools burpsuite-extender crlf-injection

Updated Dec 20, 2022
Java

A0WaQ4 / BurpText4ShellScan

Text4Shell的burp被动扫描插件

java bugbounty burp-plugin burp-extensions text4shell

Updated Dec 29, 2022
Java

Anof-cyber / AlphaScan

A BurpSuite extension for vulnerability Scanning

security bug-bounty vulnerability application-security pentesting bugbounty appsec vulnerability-scanners security-scanner burpsuite burp-extensions

Updated Feb 16, 2024
Java

hbdxmz / AutoBypassEncryptAndSign

auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景，借助burp插件自动解密数据包密文，自动绕过接口的签名保护，最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试

signature pentesting bugbounty burpsuite encryption-decryption decryption-algorithm burp-extensions burpsuite-tools

Updated Mar 27, 2024
Java

wagiro / BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

bug-bounty bugbounty vulnerability-detection burpsuite burp-extensions vulnerability-scanner

Updated Apr 26, 2024
Java

rodnt / bffuf

Burp bridge to FFUF

fuzzing bugs bugbounty burp pentest ffuf portswigger

Updated Jul 23, 2024
Java

cosad3s / salsa

SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.

security hacking salesforce bugbounty

Updated Jan 26, 2025
Java

alpernae / AIHTTPAnalyzer

AIHTTPAnalyzer revolutionizes web application security testing by bringing artificial intelligence capabilities to Burp Suite. This innovative extension harnesses the power of AI to automate vulnerability detection, provide intelligent analysis, and assist security professionals in identifying complex security issues.

extension ai artificial-intelligence application-security web-security bugbounty burp offensive-security burpsuite websecurity burp-extensions ai-security google-ai bugbounty-tool generative-ai

Updated Mar 2, 2025
Java

d3mondev / burp-vps-proxy

This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.

proxy socks5 pentesting bugbounty burpsuite burp-extensions

Updated Mar 17, 2025
Java

Followers: 616 followers
Website: github.com/topics/bugbounty
Wikipedia: Wikipedia

Related topics

penetration-testing pentest pentesting security