๐Ÿ•ต๏ธ A-to-Z Bug Bounty Hunting Tools

A curated list of tools used by Bug Bounty hunters and security researchers for testing web applications, APIs, mobile apps, cloud applications, and network infrastructure. These tools assist in reconnaissance, scanning, fuzzing, exploitation, and reporting vulnerabilities.


๐Ÿ“Œ Table of Contents


๐Ÿ” Reconnaissance

Tools for gathering public information about the target. - Amass - In-depth reconnaissance and DNS enumeration - Assetfinder - Find related domains - Hakrawler - Crawl web applications for endpoints - Gauplus - Fetch URLs from various sources - Waybackurls - Fetch URLs from the Wayback Machine - Katana - Advanced web crawler - Findomain - Fast domain discovery - ParamSpider - Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing


๐ŸŒ Subdomain Enumeration

Essential for mapping an application's attack surface.


๐Ÿ›  Web Application Testing

Tools for testing security vulnerabilities in web applications.


๐Ÿ”Œ API Security Testing

Tools for testing REST, GraphQL, and SOAP APIs.


๐Ÿ“ฑ Mobile App Security Testing

Tools for testing Android and iOS applications.


โ˜ Cloud Security Testing

Tools for testing AWS, Azure, GCP, and other cloud platforms.


๐ŸŒ Network Security Testing

Tools for assessing network security vulnerabilities.


๐Ÿ”Ž Vulnerability Scanners

Automated tools for identifying vulnerabilities.


๐Ÿงช Fuzzing Tools

Tools for fuzzing web applications and APIs.


๐Ÿ’ฅ Exploitation Tools

Tools for exploiting discovered vulnerabilities.


๐Ÿ“‹ Reporting & Automation

Tools for automating recon and reporting vulnerabilities.


๐Ÿ“ข Contributing

If you have any additional tools to suggest, feel free to submit a pull request! Follow Me : @ALIF101XL


๐Ÿ“œ License

This project is licensed under the MIT Indonesia.