Awesome Bug Bounty Tools

Curated list of various bug bounty tools

Contents

• Recon

  • Subdomains
  • Ports
  • Screenshots
  • Technologies
  • Files/directories
  • Secrets
  • Buckets
  • Git

• Exploitation

  • CMS
  • Command Injection
  • CORS Misconfiguration
  • CRLF Injection
  • CSRF Injection
  • Directory Traversal
  • File Inclusion
  • GraphQL Injection
  • HTTP Parameter Pollution
  • Insecure Deserialization
  • Insecure Direct Object References
  • [JSON Web Token](#JSON Web Token)
  • Open Redirect
  • Race Condition
  • Request Smuggling
  • Server Side Request Forgery
  • SQL Injection
  • Subdomain takeover
  • XSS Injection
  • XXE Injection

---

Exploitation

Lorem ipsum dolor sit amet

### JSON Web Token

Lorem ipsum dolor sit amet

- [bar](#bar)

Contribute

Contributions welcome! Read the contribution guidelines first.

License

To the extent possible under law, vavkamil has waived all copyright and related or neighboring rights to this work.