A collection of tools, blogs, talks, resources, etc.


BountyMachine

Bug Bounty Hunting on Steroids


Chronos

Extract pieces of info from a web page’s Wayback Machine history

https://github.com/mhmdiaa/chronos


Second-Order

Second-order subdomain takeover scanner

https://github.com/mhmdiaa/second-order


Acumen

A clean UI with a modular structure to enhance security researchers' ability to work with data

https://github.com/mhmdiaa/acumen


WaybackURLs

Collect URLs from WaybackMachine

https://gist.github.com/mhmdiaa/adf6bff70142e5091792841d4b372050


WaybackRobots

Get all of the paths that have ever been in a site’s robots.txt file using Wayback Machine

https://gist.github.com/mhmdiaa/2742c5e147d49a804b408bfed3d32d07


Automation for Bug Hunters

A few thoughts and ideas around the automation of bug hunting


Deleted Files Commonspeak module

Using GitHub’s commits dataset, we can extract what may be files that developers decided to delete from their public repositories. These files may contain sensitive data.

https://github.com/assetnote/commonspeak2#deleted-files


Ideas

A project to track ideas needed by the infosec community.

https://bugbountyprojects.github.io/ideas/


BugBountyForum Tools List

A huge list of tools for bug hunting

https://bugbountyforum.com/tools/


Automatic archive of links shared in the workspace

https://bugbountyworld.com/slack-archives/