Curated collection of bug bounty notes and tutorials in one place. Visit the link below to view the docs.
-
Updated
Apr 19, 2025 - JavaScript
#
Bug Bounty
A bug bounty program is a deal offered by many websites, organizations and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities.
Here are 106 public repositories matching this topic...
npm PoC packages
npm dependency-injection cybersecurity bug-bounty infosec bugbounty npmjs cyber-security rce-exploit dependency-confusion bug-bounty-tools
-
Updated
Mar 25, 2024 - JavaScript
🔍 Customize your new tab with Hacker Search, a modern Chrome extension featuring a matrix-inspired design and powerful search widgets.
react dns search-engine elasticsearch news hacker-news toolkit hacking tornado bugbounty cve information-gathering threat-intelligence reconnaissance redteam dorking osint-tool dorking-tool
-
Updated
Nov 10, 2025 - JavaScript
-
Updated
Feb 11, 2024 - JavaScript
This extension helps bug bounty hunters and recon specialists quickly search for archived URLs of any domain using the Wayback Machine. One click, instant access to historical data that might expose forgotten paths, juicy parameters, or legacy vulnerabilities.
-
Updated
Jul 30, 2025 - JavaScript
small and simple tool for generating a list and searching for Google Dork to identify leaked files and save the scan result. Useful tools for Bug Bounty
-
Updated
May 30, 2025 - JavaScript
Simple Subdomain fetcher using SecurityTrails API.
cli node osint scanner cybersecurity bugbounty subdomains security-tools subdomain-scanner subdomain-enumeration securitytrails securitytrails-api
-
Updated
May 8, 2024 - JavaScript
The Internet Observatory (Obsrva) is a vulnerability research project founded by independent security researcher Tyler Butler. Obsrva engages product vendors in coordinated disclosures, publishes vulnerability advisories, and creates proof of concept exploits.
proof-of-concept exploits vulnerability bugbounty responsible-disclosure vulnerability-research coordinated-disclosure
-
Updated
Oct 23, 2021 - JavaScript
Sistema de notas propositalmente vulnerável para educação em segurança cibernética e testes de penetração - contém 12+ vulnerabilidades web intencionais (SQL Injection, XSS, Path Traversal, Command Injection, etc.)
nodejs express sqlite xss cybersecurity penetration-testing sql-injection infosec web-security bugbounty security-training ethical-hacking owasp-top-10 intentionally-vulnerable command-injection security-testing vulnerability-research path-traversal vulnerable-app security-education
-
Updated
Aug 7, 2025 - JavaScript
A crawler for most recent disclosed reports on Hackerone.
-
Updated
Apr 24, 2024 - JavaScript
A browser extension that helps bug bounty hunters rewrite and improve their communications with ai.
-
Updated
May 21, 2025 - JavaScript
Chrome extension uses the HackerOne API to reveal hidden rewarded bounties on HackerOne
-
Updated
May 13, 2023 - JavaScript
Visualization layer and helper for relevant IT related documentation and operation
-
Updated
Jul 7, 2022 - JavaScript
JavaScript Analysis Masterclass Lab is a hands-on educational lab built to help security enthusiasts and bug bounty hunters master JavaScript-based vulnerabilities.
-
Updated
May 23, 2025 - JavaScript
Voyager.js is a Node.js script designed for testing URLs for template injection vulnerabilities. It automates the process of appending known injection strings to URLs and monitors the responses for signs of successful injection.
-
Updated
Jan 30, 2024 - JavaScript
A tool which helps identifying client-side prototype polluting libraries
security chromium bugbounty vulnerability-scanners security-tools cspp bugbountytips bugbounty-tool prototype-pollution
-
Updated
May 1, 2025 - JavaScript
The official DSC-RIT Bug Bounty 2020 codes.
-
Updated
Aug 31, 2020 - JavaScript
A Cyber-Security Framework for Bounty Hunting
-
Updated
Nov 29, 2024 - JavaScript
- Followers
- 616 followers
- Website
- github.com/topics/bugbounty
- Wikipedia
- Wikipedia