An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with hackerone

A curated list of projects in awesome lists tagged with hackerone .

https://github.com/arkadiyt/bounty-targets-data

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

bounty bug bugcrowd federacy hackenproof hackerone intigriti vrp yeswehack

Last synced: 27 Jan 2026

https://github.com/screetsec/sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

bash bugbounty bugcrowd collected-subdomains enumeration framework hackerone httprobe kali kali-linux pentesting recon-subdomain reconnaissance scanner subdomain-enumeration subdomain-finder subdomain-scanner subfinder sublist3r

Last synced: 03 Oct 2025

https://github.com/screetsec/Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

bash bugbounty bugcrowd collected-subdomains enumeration framework hackerone httprobe kali kali-linux pentesting recon-subdomain reconnaissance scanner subdomain-enumeration subdomain-finder subdomain-scanner subfinder sublist3r

Last synced: 14 Apr 2025

https://github.com/Screetsec/Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

bash bugbounty bugcrowd collected-subdomains enumeration framework hackerone httprobe kali kali-linux pentesting recon-subdomain reconnaissance scanner subdomain-enumeration subdomain-finder subdomain-scanner subfinder sublist3r

Last synced: 13 Mar 2025

https://github.com/elementalsouls/Claude-BugHunter

A Claude Code skill bundle for bug hunting and external red-team work — 71 skills, 15 slash commands, 681 disclosed-report patterns curated across 24 core vulnerability classes, plus enterprise identity + infrastructure attack matrices.

ai-security anthropic application-security bug-bounty bugbounty bugcrowd claude claude-code claude-skills ethical-hacking hackerone offensive-security pentesting red-team security-tools web-security

Last synced: 19 Jun 2026

https://github.com/shuvonsec/claude-bug-bounty

AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.

ai-security bug-bounty bugcrowd claude-ai claude-code ethical-hacking hackerone penetration-testing recon vulnerability-scanner

Last synced: 02 Apr 2026

https://github.com/Zarcolio/sitedorks

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

baidu bing bugbounty bugcrowd duckduckgo google google-dorks googledork hackerone hacking infosec intigriti osint python3 recon reconnaissance search search-engines yahoo yandex

Last synced: 11 Jul 2025

https://github.com/arkadiyt/bounty-targets

This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo

bounty bug bugcrowd federacy hackenproof hackerone intigriti vrp yeswehack

Last synced: 07 Apr 2025

https://github.com/yhy0/Jie

Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gathering, and exploitation, elevating it to an indispensable toolkit for both security professionals and penetration testers. 挖洞辅助工具(漏洞扫描、信息收集)

apollo-exp bugcrowd crawler hackerone jie scan scanner security-copilot shiro-exp src vul vulnerability vulnerability-detection vulnerability-exploitation vulnerability-scanners

Last synced: 07 Sep 2025

https://github.com/M4DM0e/DirDar

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

bug-bounty bugcrowd bypass dir-listing forbiddens golang hackerone hacking pentest

Last synced: 10 May 2025

https://github.com/sdushantha/dora

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

apikeys bugbounty bugcrowd ethical-hacking exploits hackerone infosec python regex

Last synced: 06 Apr 2025

https://github.com/pdelteil/BugBountyReportTemplates

List of reporting templates I have used since I started doing BBH.

bugbounty bugcrowd hackerone intigriti reports templates

Last synced: 11 Jul 2025

https://github.com/BitTheByte/Monitorizer

Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools

bugbounty bugcrowd hackerone subdomain-enumeration subfinder

Last synced: 11 Jul 2025

https://github.com/kh4sh3i/smartrecon

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter

bug-bounty-automation bugbounty dnsgen eyewitness feroxbuster hackerone hacking httprobe httpx massdns penetration-testing pentest pentest-scripts recon reconnaissance redteam shuffledns sqlmap subfinder tools

Last synced: 30 Apr 2026

https://github.com/adysec/h1_asset

HackerOne资产更新 | 每日更新HackerOne资产,对HackerOne的资产进行爬行和整理,SRC资产更新仅会增加,不会进行删除,每天更新的可以进行差异化对比来获取到新的项目资产范围

daily daily-tasks hackerone hackerone-api hackerone-programs hackerone-reports src update vulnerability

Last synced: 04 Apr 2025

https://github.com/SKVNDR/FastDork

⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" from #HackerOne #Bugcrowd #Intigriti ...

bugbounty bugcrowd chrome cybersecurity dork extension fastdork google hackerone intigriti pentest-tool

Last synced: 11 Jul 2025

https://github.com/BitTheByte/Eagle

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

bugbounty bugcrowd cve ftp hackerone hacking python ssrf takeover xss

Last synced: 02 Apr 2025

https://github.com/s7safe/android-h1

移动安全漏洞挖掘专家SKILL,基于 HackerOne 真实报告的移动安全漏洞挖掘知识库,提供 Android 和 iOS 应用的漏洞挖掘手法、技术细节和代码模式分析。

android android-app bug-bounty bugbounty hackerone skill

Last synced: 11 Jun 2026

https://github.com/samogod/bugradar

Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.

automation bounty bug bug-bounty bugbounty bugbounty-tool bugcrowd hackerone osint recon recontool security security-automation security-tools

Last synced: 11 Jul 2025

https://github.com/BugHunterID/BugHunterID

Para pencari bug / celah kemanan bisa bergabung.

bounty bug bugbounty bughunterid hackerone indonesia security

Last synced: 10 Mar 2025

https://github.com/rix4uni/scope

An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms (like Hackerone/Bugcrowd/Intigriti/etc) (updates every 10 minutes)

bug-bounty bugbounty bugbountytips bugcrowd hackenproof hackerone hacking infosec intigriti osint osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools vrp yeswehack

Last synced: 06 Mar 2026

https://github.com/itsignacioportal/hacker-scoper

CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.

bugbounty bugcrowd enumeration filter go golang hackerone infosec pentesting recon scopes security security-tools shell tool websec websecurity

Last synced: 15 Jun 2026

https://github.com/yogsec/onelinerbounty

OneLinerBounty is a collection of quick, actionable bug bounty tips in one-liner format. Perfect for bug hunters looking to boost their skills and efficiency. Contribute your own tips or use these to streamline your workflow and uncover more vulnerabilities. #BugBounty #Cybersecurity #HackTips #SecurityResearch #OneLinerBugBounty #OneLinerBounty

bug bugbounty bugbountytips burp-extensions burpsuite cyber-security cybersecurity cybersecurity-tools cybersecuritytips ethicalhacking hacker hackerone hackers hacking hacking-tools nmap onelinerbugbounty osint owasp

Last synced: 07 Mar 2026

https://github.com/dwisiswant0/bounty-targets-alert

It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.

bugbounty bugbountytips bugcrowd federacy hackenproof hackerone intigriti vdp vrp yeswehack

Last synced: 24 Mar 2025

https://github.com/andripwn/PayloadsAll

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

allpayload bugbounty bugcrowd bughunter hackerone payloads pentest python rce researchers securityresearchers sql vulnerability vulnerabilityanalysis xsss

Last synced: 10 Mar 2025

https://github.com/yogsec/OneLinerBounty

OneLinerBounty is a collection of quick, actionable bug bounty tips in one-liner format. Perfect for bug hunters looking to boost their skills and efficiency. Contribute your own tips or use these to streamline your workflow and uncover more vulnerabilities. #BugBounty #Cybersecurity #HackTips #SecurityResearch #OneLinerBugBounty #OneLinerBounty

bug bugbounty bugbountytips burp-extensions burpsuite cyber-security cybersecurity cybersecurity-tools cybersecuritytips ethicalhacking hacker hackerone hackers hacking hacking-tools nmap onelinerbugbounty osint owasp

Last synced: 01 Apr 2025

https://github.com/edoverflow/h1-cli

A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.

hackerone security

Last synced: 23 Apr 2025

https://github.com/BitTheByte/Orkestra

Web-based Android debugger with inspection capabilities using Frida and Jadx as a backbone

android bugbounty bugcrowd debugger decompiler frida hackerone jadx java java-decompiler orkestra

Last synced: 12 Jul 2025

https://github.com/hackermondev/hackerone-tracker

Track HackerOne reports and leaderboard changes on programs through a Discord webhook

bug-bounty discord hackerone hackerone-report-tracker opportunities rust

Last synced: 04 Apr 2025

https://github.com/VincentDS/HackerOne-Notifier

Send notifications if a new program is published on HackerOne using Pushbullet

bugbounty hackerone notifications pushbullet

Last synced: 11 Jul 2025

https://github.com/ItsIgnacioPortal/hacker-scoper

Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.

bugbounty bugcrowd enumeration filter go golang hackerone infosec pentesting recon scopes security security-tools websec websecurity

Last synced: 11 Jul 2025

https://github.com/humblelad/Needle

Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip

bugbounty bugcrowd chrome-extension hackerone intigriti yeswehack

Last synced: 11 Jul 2025

https://github.com/pdelteil/HackerOneAPIClient

This project is a bash client to use HackerOne's API.

bugbounty bugbountyhunting hackerone

Last synced: 03 May 2025

https://github.com/noobsec/hacktivity-notify

Get newest public disclosed HackerOne report notifications on your Desktop

disclosure hackerone hacktivity notify-send

Last synced: 12 Jan 2026

https://github.com/hacker0x01/hackerone-graphql-mcp-server

MCP server for the HackerOne GraphQL API

graphql hackerone mcp

Last synced: 11 Mar 2026

https://github.com/liamg/hackerone

Go HackerOne API Client

api-client hackerone hackerone-api

Last synced: 30 Jul 2025

https://github.com/0xtavian/get_acquisitions.py

Supply a domain to retrieve acquisitions details.

bugbounty bugcrowd hackerone hacking recon reconnaissance

Last synced: 10 Oct 2025

https://github.com/machine1337/jsscanner

An Efficent tool to find juicy secrets in javascript source code. Automate Your Javascript hunting using this tool.

bugbounty bugbounty-tool hackerone hacking javascript-recon jsscanner machine1337 reconn

Last synced: 25 Apr 2025

https://github.com/machine1337/JSScanner

An Efficent tool to find juicy secrets in javascript source code. Automate Your Javascript hunting using this tool.

bugbounty bugbounty-tool hackerone hacking javascript-recon jsscanner machine1337 reconn

Last synced: 10 Mar 2025

https://github.com/sa7mon/h1rss

An RSS feed generator for HackerOne Hacktivity

bugbounty golang hackerone rss

Last synced: 19 Oct 2025

https://github.com/edoverflow/bounty-pls

A Chrome extension that spices up those #togetherwehitharder tweets.

bugbounty hackerone

Last synced: 23 Apr 2025

https://github.com/willianvdv/hackerone-ruby

Get HackerOne resources in your app

hackerone

Last synced: 21 Sep 2025

https://github.com/demon1a/bounties-uwu

Chrome extension uses the HackerOne API to reveal hidden rewarded bounties on HackerOne

bugbounty hackerone javascript security tools

Last synced: 14 Oct 2025

https://github.com/abhigyantrips/hackerone-bot

An unofficial Discord bot that displays info using the HackerOne API.

hackerone hackerone-api

Last synced: 12 Jul 2025

https://github.com/codeb0ss/cve-2023-20073-

Mass Exploit - CVE-2023-20073 - Cisco VPN Routers - [Unauthenticated Arbitrary File Upload and Stored XSS]

0day bug bugbounty cisco codeb0ss codeboss cve cve-2023-20073 exploit hackerone mass mass-exploit uncodeboss vpn-router

Last synced: 10 Sep 2025

https://github.com/shreyaschavhan/bugbountywriteups

This Repository will contain Bug Bounty Write-Up that I read on daily basis!

bounty bounty-hunters bug-bounty bugbounty bugcrowd hackerone hackers payloads synack tools writeups

Last synced: 10 Mar 2025

https://github.com/codeb0ss/CVE-2023-20073-

Mass Exploit - CVE-2023-20073 - Cisco VPN Routers - [Unauthenticated Arbitrary File Upload and Stored XSS]

0day bug bugbounty cisco codeb0ss codeboss cve cve-2023-20073 exploit hackerone mass mass-exploit uncodeboss vpn-router

Last synced: 10 Mar 2025

https://github.com/yogsec/osint-tools

The OSINT Framework is a powerful collection of tools and methods designed for open-source intelligence gathering. This framework covers a wide range of categories to help security researchers, investigators, and analysts uncover crucial information effectively.

bugbounty bugbountytips bugbountytools cybersecurity cybersecurity-education hackerone hacking-tools kali-linux open-source-intelligence osint osint-framework osint-kali osint-resources osint-tool osint-tool-list osint-toolkit osint-tools osint-tools-list osinttools yogsec

Last synced: 03 Jan 2026

https://github.com/cbrnrd/lacewing

🦗Your neighborhood bug bounty assistant

bug bugbounty bugcrowd hackerone ruby rubygems

Last synced: 29 Jul 2025

https://github.com/0xrar/pre-game_hacktivitycon2021

writeups for the challenges i solved in the Pre-Game HacktivityCon2021

ctf-writeups hackerone hacktivity writeups

Last synced: 13 Feb 2026

https://github.com/zwanski2019/zwanski-xss-hunter-v2

A professional-grade web security scanner with an interactive Streamlit UI. Covers XSS (reflected, stored, DOM, blind), CORS misconfigurations, security header auditing, password reset ATO testing, and AI-powered analysis via OpenRouter. Not a toy scanner

bugbounty hackerone xss-attacks xss-vulnerability zwanski

Last synced: 12 Jun 2026

https://github.com/muhammadwaseem29/backupfinder

BackupFinder discovers backup files on web servers by generating intelligent patterns.

backupfinder bug bugbounty bugcrowd ffuf hackerone wordlist-generator yeswehack

Last synced: 03 Sep 2025