Bug Bounty Helper
Target Domain:
显示
隐藏
🔍
Directory listing vulnerabilities
🔍
Exposed Configuration files
🔍
Exposed Database files
🔍
Find WordPress
🔍
Exposed log files
🔍
Backup and old files
🔍
Login pages
🔍
SQL errors
🔍
Publicly exposed documents
🔍
phpinfo()
🔍
Finding Backdoors
🔍
Install / Setup files
🔍
Open Redirects
🔍
Apache STRUTS RCE
🔍
Find Pastebin entries
🔍
Employees on LINKEDIN
🔍
.htaccess sensitive files
🔍
Find Subdomains
🔍
Find Sub-Subdomains
🔍
Find WordPress #2
🔍
Find WordPress [Wayback Machine]
🔍
Search in GITHUB
🔍
Search in OpenBugBounty
🔍
Search in Reddit
🔍
Test CrossDomain
🔍
Check in ThreatCrowd
🔍
Find .SWF file (Google)
🔍
Find .SWF file (Yandex)
🔍
Search SWF in WayBack Machine
🔍
Search in WayBack Machine #2
🔍
Search in WayBack Machine #3
🔍
Search in WayBack Machine [List/All]
🔍
Check in crt.sh
🔍 Check in CENSYS
[IP4]
|
[DOMAINS]
|
[CERTS]
🔍
Search in SHODAN
My Recon Tips
Github Recon:
显示
隐藏
🔍
[Github]credentials.xml
🔍
[Github]settings.py
🔍
[Github]secret_token.rb
🔍
[Github].sqlite
🔍
[Github]id_dsa
🔍
[Github]id_rsa
🔍
[Github]credentials
🔍
[Github]wp-config.php
🔍
[Github].env
🔍
[Github]shadow
🔍
[Github]configuration.php
🔍
[Github]config.inc.php
🔍
[Github]config.php
🔍
[Github]LocalSettings.php
🔍
[Github]secrets.yml
🔍
[Github]database
🔍
[Github]id_ed25519
🔍
[Github].pem
🔍
[Github].crt
🔍
[Github]pgpass
🔍
[Github]idea14.key
🔍
[Github].bash_profile
🔍
[Github].sh_history
🔍
[Github]hub
🔍
[Github]api_key
🔍
[Github]client_secret
🔍
[Github]api_token
🔍
[Github]client_id
🔍
[Github]shodan_api_key
🔍
[Github]password
🔍
[Github]user_password
🔍
[Github]client_secret
🔍
[Github]secret
🔍
[Github]user auth
🔍
[Github]token
🔍
[Github]passcode
🔍
[Github]password hash
🔍
[Github]user_pass
🔍
[Github]authentication
🔍
[Github]authorization_bearer
🔍
[Github]oauth
🔍
[Github]auth
🔍
[Github]OTP
Helper Websites
🔵
site:docs.google.com/spreadsheets "company name"
🔵
site:groups.google.com/spreadsheets "company name"
Helper Websites
🔵
DNSBin - The request.bin of DNS!
🔵
WordPress Scan #1
🔵
WordPress Scan #2
🔵
Facebook Certificate Transparency Monitoring [Recon]
🔵
IP converter
🔵
Domain History Checker
🔵
Source code search engine