{"id":13844773,"url":"https://github.com/BountyStrike/Bountystrike-sh","last_synced_at":"2025-07-12T00:31:35.832Z","repository":{"id":42074577,"uuid":"228700382","full_name":"BountyStrike/Bountystrike-sh","owner":"BountyStrike","description":"Poor (rich?) man's bug bounty pipeline https://dubell.io","archived":false,"fork":false,"pushed_at":"2023-04-24T11:35:27.000Z","size":65,"stargazers_count":265,"open_issues_count":8,"forks_count":61,"subscribers_count":14,"default_branch":"master","last_synced_at":"2024-08-05T17:43:03.583Z","etag":null,"topics":["bugbounty","bugbounty-platform"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/BountyStrike.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-12-17T20:57:53.000Z","updated_at":"2024-08-05T17:43:03.583Z","dependencies_parsed_at":"2023-01-28T00:30:36.403Z","dependency_job_id":null,"html_url":"https://github.com/BountyStrike/Bountystrike-sh","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BountyStrike%2FBountystrike-sh","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BountyStrike%2FBountystrike-sh/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BountyStrike%2FBountystrike-sh/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BountyStrike%2FBountystrike-sh/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/BountyStrike","download_url":"https://codeload.github.com/BountyStrike/Bountystrike-sh/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225772747,"owners_count":17521882,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","bugbounty-platform"],"created_at":"2024-08-04T17:02:56.176Z","updated_at":"2024-11-21T17:30:47.351Z","avatar_url":"https://github.com/BountyStrike.png","language":"Shell","funding_links":[],"categories":["Shell (473)","Shell"],"sub_categories":[],"readme":"\n# Bountystrike-sh\n\n**Bountystrike-sh** is a collection of bash and python scripts that installs common bug bounty tools, performs recon scans and continous asset discovery.\n\nBountystrike-sh is opensource but belongs to the BountyStrike project, self-hosted bug bounty management system.\n\n```\n  ____   ____  _    _ _   _ _________     _______ _______ _____  _____ _  ________\n |  _ \\ / __ \\| |  | | \\ | |__   __\\ \\   / / ____|__   __|  __ \\|_   _| |/ /  ____|\n | |_) | |  | | |  | |  \\| |  | |   \\ \\_/ / (___    | |  | |__) | | | | ' /| |__\n |  _ \u003c| |  | | |  | | . ` |  | |    \\   / \\___ \\   | |  |  _  /  | | |  \u003c |  __|\n | |_) | |__| | |__| | |\\  |  | |     | |  ____) |  | |  | | \\ \\ _| |_| . \\| |____\n |____/ \\____/ \\____/|_| \\_|  |_|     |_| |_____/   |_|  |_|  \\_\\_____|_|\\_\\______|\n\n________________________________ WHAT THE SHELL?__________________________________\n\n== Info\n Bountystrike-sh is a simple bash pipeline script\n containing a bunch tools piping data between each other.\n No need for any fancy setup ^_^\n\n Stiched together by @dubs3c.\n\n== Usage:\n        bstrike.sh \u003caction\u003e [project] [domain]\n            bstrike.sh install                       (Install tooling)\n            bstrike.sh run fra fra.se                (Run pipeline)\n            bstrike.sh [assetdiscovery|ad]   fra.se  (Run only asset discovery)\n            bstrike.sh [contentdiscovery|cd] fra.se  (Run only content discovery)\n            bstrike.sh [networkdiscovery|nd] fra.se  (Run only network discovery)\n            bstrike.sh [visualdiscovery|vd]  fra.se  (Run only visual discovery)\n            bstrike.sh [vulndiscovery|vvd]   fra.se  (Run only vulnerability discovery)\n```\n\n## Tools\n\nThe following tools and worldlists will be installed:\n\n* [Amass](https://github.com/OWASP/Amass)\n* [Subfinder](https://github.com/projectdiscovery/subfinder)\n* [Gobuster](https://github.com/OJ/gobuster)\n* [Waybackurls](http://github.com/tomnomnom/waybackurls)\n* [WaybackUnifier](https://github.com/mhmdiaa/waybackunifier)\n* [httprobe](github.com/tomnomnom/httprobe)\n* [meg](https://github.com/tomnomnom/meg)\n* [unfurl](https://github.com/tomnomnom/unfurl)\n* [filter-resolved](https://github.com/tomnomnom/hacks/tree/master/filter-resolved)\n* [gowitness](https://github.com/sensepost/gowitness)\n* [GetJS](https://github.com/003random/getJS)\n* [Subzy](https://github.com/lukasikic/subzy)\n* [SubOver](https://github.com/Ice3man543/SubOver)\n* [Aquatone](https://github.com/michenriksen/aquatone)\n* [gitrob](https://github.com/michenriksen/gitrob)\n* [dnsgen](https://github.com/ProjectAnte/dnsgen)\n* [truffleHog](https://github.com/dxa4481/truffleHog)\n* [massdns](https://github.com/blechschmidt/massdns)\n* [masscan](https://github.com/robertdavidgraham/masscan)\n* [nmap](https://github.com/nmap/nmap)\n* [SecLists](https://github.com/danielmiessler/SecLists)\n* [sshgit](https://github.com/eth0izzle/shhgit)\n* [api_wordlist](https://github.com/chrislockard/api_wordlist)\n* [wafw00f](https://github.com/EnableSecurity/wafw00f)\n* [fuzzdb](https://github.com/fuzzdb-project/fuzzdb)\n* [Probable-Wordlists](https://github.com/berzerk0/Probable-Wordlists)\n* [Bo0oM/fuzz.txt](https://github.com/Bo0oM/fuzz.txt)\n* [Corsy](https://github.com/s0md3v/Corsy)\n* [ffuf](https://github.com/ffuf/ffuf)\n* [flumberboozle](https://github.com/fellchase/flumberboozle)\n* [bass](https://github.com/Abss0x7tbh/bass)\n* [dirsearch](https://github.com/maurosoria/dirsearch)\n* [unisub](https://github.com/tomnomnom/hacks/tree/master/unisub)\n* [MullvadVPN](https://mullvad.net/)\n\nOther stuff that will be installed as well:\n* Python 3.7.6\n* NodeJS\n* npm\n* Docker CE\n* Ruby\n\n## Install\nJust run `bash install.sh` to get the bug hunting environment. So far only tested for Ubuntu 22.04.\n\n### Vagrant\nYou also the have the option to use vagrant with virtualbox, just runt `vagrant up \u0026\u0026 vagrant ssh`. Create a folder called `data` in the root directory, vagrant will map it to `/vagrant_data` inside the VM.\n\n## Running\nSimply run `./bstrike.sh \u003cproject\u003e \u003cdomain\u003e`. \n\n## Contributing\nAny feedback or ideas are welcome! Want to improve something? Create a pull request!\n\n1. Fork it!\n2. Create your feature branch: `git checkout -b my-new-feature`\n3. Commit your changes: `git commit -am 'Add some feature'`\n4. Push to the branch: `git push origin my-new-feature`\n5. Submit a pull request :D\n\n## License\n\nBountystrike-sh is made with ♥ by [@dubs3c](https://github.com/dubs3c) and is released under the GNU General Public License v3.0.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FBountyStrike%2FBountystrike-sh","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FBountyStrike%2FBountystrike-sh","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FBountyStrike%2FBountystrike-sh/lists"}