Bug’s feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities… It’s implemented as a PWA application soRead more
jsleak is a tool to identify sensitive data in JS files through regex patterns. Although it’s built for this, you can use it to identifyRead more
ChangeTower is intended to help you watch changes in webpages and get notified of any changes written in Go This tools is good to knowRead more
A simple scanner/exploitation tool written in GO which automatically exploits known and existing gadgets (checks for specific variables in the global context) to perform XSSRead more
Allsafe is an intentionally vulnerable application that contains various vulnerabilities. Unlike other vulnerable Android apps, this one is less like a CTF and more likeRead more
Fuzz 403ing endpoints for bypasses Follow on twitter! @intrudir This tool will check the endpoint with a couple of headers such as X-Forwarded-For It willRead more
Subcert is a subdomain enumeration tool, that finds all the valid subdomains from certificate transparency logs. Setup Step 1: Install Python 3 apt-get install python3-pipRead more
Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline This tool is available when the repository, such as github,Read more
Sub 404 is a tool written in python which is used to check possibility of subdomain takeover vulnerabilty and it is fast as it isRead more
A Bash script and Docker image for Bug Bounty reconnaissance, intended for headless use. Low on resources, high on information output. Helpful? BugBountyScanner helped youRead more
The tool gets a list of URLs, and removes “duplicate” pages in the sense of URL patterns that are probably repetitive and points to theRead more
ADS goes here!If you don't see it, then please turn OFF
AD blocker for this website.
Our ads are not aggressive and help us
pay for the server and coffee.
THANK YOU for your support!