{"id":13842328,"url":"https://github.com/edoardottt/lit-bb-hack-tools","last_synced_at":"2026-02-28T01:02:20.632Z","repository":{"id":39670165,"uuid":"365339453","full_name":"edoardottt/lit-bb-hack-tools","owner":"edoardottt","description":"Little Bug Bounty \u0026 Hacking Toolsβš”οΈ","archived":false,"fork":false,"pushed_at":"2024-08-05T17:41:31.000Z","size":296,"stargazers_count":327,"open_issues_count":2,"forks_count":53,"subscribers_count":11,"default_branch":"main","last_synced_at":"2024-10-12T09:47:43.537Z","etag":null,"topics":["bug-bounty","bug-bounty-recon","bugbounty","cli","cli-tool","ctf-tool","ctf-tools","hacking","hacking-tool","hacking-tools","hacktoberfest","infosec","infosectools","penetration-testing-tools","security-tools","tools"],"latest_commit_sha":null,"homepage":"https://edoardoottavianelli.it","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/edoardottt.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"github":"edoardottt","liberapay":"edoardottt","patreon":"edoardottt","ko_fi":"edoardottt","open_collective":"edoardottt","custom":"https://www.paypal.me/edoardottt"}},"created_at":"2021-05-07T19:54:44.000Z","updated_at":"2024-10-09T16:58:20.000Z","dependencies_parsed_at":"2024-04-09T17:27:04.783Z","dependency_job_id":"e434369d-7f94-4b07-8ed1-580a6116722a","html_url":"https://github.com/edoardottt/lit-bb-hack-tools","commit_stats":null,"previous_names":[],"tags_count":18,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edoardottt%2Flit-bb-hack-tools","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edoardottt%2Flit-bb-hack-tools/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edoardottt%2Flit-bb-hack-tools/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edoardottt%2Flit-bb-hack-tools/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/edoardottt","download_url":"https://codeload.github.com/edoardottt/lit-bb-hack-tools/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":239994003,"owners_count":19730780,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bug-bounty","bug-bounty-recon","bugbounty","cli","cli-tool","ctf-tool","ctf-tools","hacking","hacking-tool","hacking-tools","hacktoberfest","infosec","infosectools","penetration-testing-tools","security-tools","tools"],"created_at":"2024-08-04T17:01:32.204Z","updated_at":"2025-11-11T01:05:47.045Z","avatar_url":"https://github.com/edoardottt.png","language":"Go","readme":"\u003cp align=\"center\"\u003e\n \u003cimg src=\"https://github.com/edoardottt/images/blob/main/lit-bb-hack-tools/banner.png\"\u003e\n\u003c/p\u003e\n\nCommand Line tools useful during Bug Bounty / Penetration testing. Focused on Web targets.\n\n\u003ca href=\"https://github.com/edoardottt/lit-bb-hack-tools/actions\"\u003e\n \u003cimg src=\"https://github.com/edoardottt/lit-bb-hack-tools/actions/workflows/go.yml/badge.svg\" alt=\"workflows\" /\u003e\n\u003c/a\u003e\n\u003cbr\u003e\n\nInstallation πŸ“₯\n-------\n\n- `git clone https://github.com/edoardottt/lit-bb-hack-tools`\n- `cd lit-bb-hack-tools`\n- `make build`\n\nThen use the tools as described in the README in each tools folder.\n\n- `make clean` (uninstall)\n- `make update` (update)\n\nTools list πŸ“ƒ\n-------\n\n- [eae](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/eae) Take as input on stdin a list of urls and print on stdout all the extensions sorted.\n- [heacoll](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/heacoll) Take as input on stdin a list of urls and print on stdout all the unique headers found.\n- [removepro](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/removepro) Take as input on stdin a list of urls and print on stdout all the unique urls without protocols.\n- [subtake](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/subtake) Take as input on stdin a list of urls and print on stdout CNAME records found with `dig`.\n- [eap](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/eap) Take as input on stdin a list of urls and print on stdout all the protocols sorted.\n- [gitdump](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/gitdump) It prints all the matches in a git repository with a specified pattern.\n- [removehost](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/removehost) Take as input on stdin a list of urls and print on stdout all the unique queries without protocol and host.\n- [chainredir](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/chainredir) Take as input a URL and print on stdout all the redirects.\n- [tahm](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/tahm) Take as input on stdin a list of urls and print on stdout all the status codes and body sizes for HTTP methods.\n- [robotstxt](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/robotstxt) Take as input on stdin a list of urls and print on stdout all the unique paths found in the robots.txt file.\n- [cleanpath](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/cleanpath) Take as input on stdin a list of urls/paths and print on stdout all the unique paths (at any level).\n- [eefjsf](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/eefjsf) Take as input on stdin a list of js file urls and print on stdout all the unique endpoints found.\n- [bbtargets](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/bbtargets) Produce as output on stdout all the bug bounty targets found on Chaos list by Project Discovery.\n- [nrp](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/nrp) Take as input on stdin a list of domains and print on stdout all the unique domains without redirects.\n- [eah](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/eah) Take as input on stdin a list of urls and print on stdout all the hosts sorted.\n- [doomxss](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/doomxss) Take as input on stdin a list of html/js file urls and print on stdout all the possible DOM XSS sinks found.\n- [eaparam](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/eaparam) Take as input on stdin a list of urls and print on stdout all the unique parameters.\n- [bbscope](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/bbscope) Take as input on stdin a list of urls or subdomains and a BurpSuite Configuration file and print on stdout all in scope items.\n- [eapath](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/eapath) Take as input on stdin a list of urls and print on stdout all the unique urls without queries.\n- [rpfu](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/rpfu) Take as input on stdin a list of urls and print on stdout all the unique urls without ports (if 80 or 443).\n- [rapwp](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/rapwp) Take as input on stdin a list of urls and a payload and print on stdout all the unique urls with ready to use payloads.\n- [checkbypass](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/checkbypass) Take as input on stdin a payload and print on stdout all the successful WAF bypasses.\n- [knoxssme](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/knoxssme) Take as input on stdin a list of urls and print on stdout the results from Knoxss.me API.\n- [genscope](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/genscope) Take as input a file containing a list of (sub)domains (wildcards allowed) and produce a BurpSuite Configuration file.\n- [kubemetrics](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/kubemetrics) Take as input on stdin a list of urls and print on stdout all the unique paths and urls found in the /metrics endpoint.\n- [earh](https://github.com/edoardottt/lit-bb-hack-tools/tree/main/earh) Take as input on stdin a list of urls and print on stdout all the unique root hosts.\n\nChangelog πŸ“Œ\n-------\n\nDetailed changes for each release are documented in the [release notes](https://github.com/edoardottt/lit-bb-hack-tools/releases).\n\nContributing 🀝\n------\n\nIf you want to contribute to this project, you can start opening an [issue](https://github.com/edoardottt/lit-bb-hack-tools/issues).\n\nBefore opening a pull request, download [golangci-lint](https://golangci-lint.run/usage/install/) and run\n\n```bash\ngolangci-lint run\n```\n\nIf there aren't errors, go ahead :)\n\nLicense πŸ“\n-------\n\nThis repository is under [GNU General Public License v3.0](https://github.com/edoardottt/lit-bb-hack-tools/blob/main/LICENSE). \n[edoardottt.com](https://edoardottt.com/) to contact me.\n","funding_links":["https://github.com/sponsors/edoardottt","https://liberapay.com/edoardottt","https://patreon.com/edoardottt","https://ko-fi.com/edoardottt","https://opencollective.com/edoardottt","https://www.paypal.me/edoardottt"],"categories":["Go"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fedoardottt%2Flit-bb-hack-tools","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fedoardottt%2Flit-bb-hack-tools","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fedoardottt%2Flit-bb-hack-tools/lists"}