bb tools
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
MNS is a security and reconnaissance tool for monitoring new subdomains
Monitor your target continuously for new subdomains!
Continuous monitoring for JavaScript files
a javascript change monitoring tool for bugbounties
Best and simplest tool for website change detection, web page monitoring, and website change alerts. Perfect for tracking content changes, price drops, restock alerts, and website defacement monito…
Change monitoring app that checks the content of web pages in different periods.
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
Burp Suite Certified Practitioner Exam Study
Obtain GraphQL API schema even if the introspection is disabled
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
Python tool made to test CORS misconfiguration and create necessary PoC files
A OWASP Based Checklist With 500+ Test Cases
Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages
Stay on the beat with SubHound - receive notifications for new subdomains on Telegram and Discord! 🐶🎵
Leverage certificate transparency live feed to monitor for newly issued subdomain A18E certificates (last 90 days, configurable), for domains participating in bug bounty programs.
HuntersEye is designed for Bug Bounty Hunters, and Security Researchers to monitor new subdomains and certificates for specified domains. The primary goal is to streamline and expedite the process …
Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based …
A blind XSS detection and XSS data capture framework
Never forget where you inject.
CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
Process URLs and remove duplicate query parameters.
This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.
一个用于修改右键插件菜单层级的Burpsuite插件。A simple BurpSuite extension to change extension context menu level.