A collection of tools, blogs, talks, resources, etc.

BountyMachine

Bug Bounty Hunting on Steroids

Chronos

Extract pieces of info from a web page’s Wayback Machine history

https://github.com/mhmdiaa/chronos

Second-Order

Second-order subdomain takeover scanner

https://github.com/mhmdiaa/second-order

Acumen

A clean UI with a modular structure to enhance security researchers' ability to work with data

https://github.com/mhmdiaa/acumen

WaybackURLs

Collect URLs from WaybackMachine

https://gist.github.com/mhmdiaa/adf6bff70142e5091792841d4b372050

WaybackRobots

Get all of the paths that have ever been in a site’s robots.txt file using Wayback Machine

https://gist.github.com/mhmdiaa/2742c5e147d49a804b408bfed3d32d07

Automation for Bug Hunters

A few thoughts and ideas around the automation of bug hunting

Deleted Files Commonspeak module

Using GitHub’s commits dataset, we can extract what may be files that developers decided to delete from their public repositories. These files may contain sensitive data.

https://github.com/assetnote/commonspeak2#deleted-files

Ideas

A project to track ideas needed by the infosec community.

https://bugbountyprojects.github.io/ideas/

BugBountyForum Tools List

A huge list of tools for bug hunting

https://bugbountyforum.com/tools/

Automatic archive of links shared in the workspace

https://bugbountyworld.com/slack-archives/