Tools, Extensions and Softwares
https://github.com/xnl-h4ck3r/XnlReveal (A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements)
https://github.com/0xAnuj/Blinks (Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality.)
https://github.com/yeswehack/PwnFox (Test fpor Autherization Bugs)
https://github.com/JesseClarkND/abnormalizer (IDN Homograph Attack)
https://0xacb.com/normalization_table (IDN Homograph Attack)
https://lock.cmpxchg8b.com/rebinder.html (Test DNS Rebinding Attack)
https://github.com/robre/jsmon (javascript change monitoring tool for bugbounties)
https://github.com/ahussam/url-tracker (Change monitoring app that checks the content of web pages in different periods)
https://github.com/portswigger/methods-discloser (Check available methods for endpoint)
https://github.com/kevin-mizu/domloggerpp (A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations)
Bookmark for getting paths from the source code and js files
Bookmark for getting urls from the source code of the page
Bookmark for getting urls from the wayback
https://subdomainfinder.c99.nl/ (Online subdomain finder )
https://github.com/streaak/keyhacks (For Expliitation of api keys and exposures)
https://www.irongeek.com/homoglyph-attack-generator.php (Homoglyph Attack Generator)
https://bbradar.io/ (Radar for bug bounty programs)
Last updated