Tag

Web

Tools and methodologies for web application security testing, including injection flaws, authentication issues, access control weaknesses, and client/server-side vulnerabilities.

Back to tags

Bug BountyReconnaissanceApplication Security

Visit Website

bbot

Details

A recursive internet scanner for hackers, designed to automate Recon, Bug Bounties, and ASM with a focus on comprehensive subdomain enumeration.

Bug Bounty OSINT Web

Application SecurityReconnaissance

Visit Website

ffuf

Details

ffuf is a fast web fuzzer written in Go, designed for content discovery and web application security testing.

Web Bug Bounty External

Application SecurityReconnaissanceRed Team Operations

Visit Website

reNgine

Details

reNgine is an automated web reconnaissance framework streamlining the recon process for security professionals and bug bounty hunters.

Bug Bounty Web Report

ReconnaissanceApplication SecurityBug Bounty

Visit Website

reconFTW

Details

reconFTW automates reconnaissance, subdomain enumeration, and vulnerability checks, providing comprehensive target information.

Bug Bounty Web OSINT

Application Security

Visit Website

shcheck

Details

shcheck is a tool to check security headers of a website, reporting which are enabled and which are not.

Web

Application Security

Visit Website

sqlmap

Details

sqlmap is an automatic SQL injection and database takeover tool for penetration testing and vulnerability detection.

Web Mobile API Bug Bounty

ReconnaissanceBug Bounty

Visit Website

subwiz

Details

A lightweight GPT model trained to discover subdomains, aiding in reconnaissance and bug bounty hunting.

Bug Bounty OSINT Web

Application SecurityReconnaissance

Visit Website

xnLinkFinder

Details

A python tool to discover endpoints, potential parameters, and target-specific wordlists by crawling or analyzing various input sources.

Web Bug Bounty