Awesome Bug Bounty Tools

Curated list of various bug bounty tools

Contents

• Recon

  • Subdomains
  • Ports
  • Screenshots
  • Technologies
  • [Files / directories](#Files / directories)
  • Secrets
  • Buckets
  • Git

• Exploitation

  • CMS
  • Command Injection
  • CORS Misconfiguration
  • CRLF Injection
  • CSRF Injection
  • Directory Traversal
  • File Inclusion
  • GraphQL Injection
  • HTTP Parameter Pollution
  • Insecure Deserialization
  • Insecure Direct Object References
  • JSON Web Token
  • Open Redirect
  • Race Condition
  • Request Smuggling
  • Server Side Request Forgery
  • SQL Injection
  • Subdomain takeover
  • XSS Injection
  • XXE Injection

---

xxx

Lorem ipsum dolor sit amet

• foo

  xexexe

  Lorem ipsum dolor sit amet

  • bar

Contribute

Contributions welcome! Read the contribution guidelines first.

License

To the extent possible under law, vavkamil has waived all copyright and related or neighboring rights to this work.