Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

Go 4,763 875 Updated Jan 23, 2025

hahwul / dalfox

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Go 4,665 504 Updated Nov 6, 2025

Qianlitp / crawlergo

A powerful browser crawler for web vulnerability scanners

Go 2,999 498 Updated Mar 11, 2025

jaeles-project / gospider

Gospider - Fast web spider written in Go

Go 2,798 331 Updated Apr 21, 2024

Bearer / bearer

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Go 2,440 130 Updated Nov 3, 2025

tomnomnom / hacks

A collection of hacks and one-off scripts

Go 2,383 675 Updated Mar 13, 2025

lobuhi / byp4xx

40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...

Go 1,767 292 Updated Jul 3, 2023

musana / CF-Hero

CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications

Go 1,740 147 Updated Jun 15, 2025

BishopFox / jsluice

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Go 1,687 125 Updated May 22, 2024

projectdiscovery / shuffledns

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

Go 1,521 209 Updated Nov 3, 2025

dwisiswant0 / crlfuzz

A fast tool to scan CRLF vulnerability written in Go

Go 1,486 148 Updated Oct 5, 2025

PentestPad / subzy

Subdomain takeover vulnerability checker

Go 1,419 199 Updated Sep 10, 2024

devploit / nomore403

🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.

Go 1,366 154 Updated Jun 27, 2025

tomnomnom / unfurl

Pull out bits of URLs provided on stdin

Go 1,252 126 Updated Aug 12, 2023

denandz / sourcemapper

Extract JavaScript source trees from Sourcemap files

Go 1,225 120 Updated Mar 22, 2024

projectdiscovery / pdtm

ProjectDiscovery's Open Source Tool Manager

Go 980 83 Updated Oct 11, 2025

musana / fuzzuli

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

Go 928 94 Updated Aug 24, 2023

projectdiscovery / alterx

Fast and customizable subdomain wordlist generator using DSL

Go 882 66 Updated Nov 6, 2025

ndelphit / apkurlgrep

Extract endpoints from APK files

Go 860 121 Updated May 22, 2024

tomnomnom / qsreplace

Accept URLs on stdin, replace all query string values with a user-supplied value

Go 844 128 Updated Nov 23, 2022

003random / getJS

A tool to fastly get all javascript sources/files

Go 836 115 Updated Jul 4, 2025

Amirhossein Bidokhti AmirhosseinBidokhti

Organizations

Lists (24)

android pentest

api pentesting

burpsuite utilized

Bypass (4xx)

checklists, methodologies

code review, devsecops

general stuffs

ios pentest

node stuffs

payloads

pentest note taking apps

recon (application)

recon (assets)

recon (dorks, queries)

recon (javascripts)

vulnerable android apps

vulnerable ios apps

vulnerable [web] apps

vulns (open redirect)

vulns (sqli)

vulns (ssrf)

vulns (xss)

wlists

writeups & edu

Stars