PyRank

Bugbounty Python Packages

Python packages with the GitHub topic bugbounty. Sorted by relevance, with stars and monthly downloads.
blacklanternsecurity
bbot

The recursive internet scanner for hackers. 🧡

76K 10K 803
maurosoria
dirsearch

Web path scanner

24K 14K 2K
qBraid
qbraid-core

Where qBraid users discuss, report bugs and submit feature requests.

24K 5 1
Ge0rg3
requests-ip-rotator

A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

13K 2K 172
dalisecurity
fray

Open-source WAF Security Testing Platform — 7,200+ attack payloads, 98 WAF/CDN fingerprints, AI-powered bypass engine, recon pipeline, beautiful CLI output

11K 50 4
dwisiswant0
apkleaks

Scanning APK file for URIs, endpoints & secrets.

8K 6K 574
Impact-I
reflutter

Flutter Reverse Engineering Framework

8K 3K 282
netlas-io
netlas

Netlas.io Python SDK & CLI Tool

5K 30 6
sa7mon
s3scanner

Scan for misconfigured S3 buckets across S3-compatible APIs!

4K 3K 404
ExploitCraft
reconninja

38-phase automated reconnaissance framework for security researchers

4K 39 7
qBraid
qbraid-cli

Where qBraid users discuss, report bugs and submit feature requests.

4K 5 1
yeswehack
ywh2bt

YesWeHack BugTracker

3K 21 7
ihebski
defaultcreds-cheat-sheet

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

2K 7K 772
blacklanternsecurity
webcap

An ultra lightweight web screenshot tool with advanced DOM analysis features.

2K 43 4
guelfoweb
knock-subdomains

Knock Subdomain Scan

2K 4K 882
chiasmod0n
chiasmodon

Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including domain emails, domain credentials, CIDRs , ASNs , and subdomains, the tool also allows users to search Google Play application ID.

2K 676 56
forshaur
suk

access multiple sessions of temporary email inbox straight from your terminal. powered by temp-mail.org

2K 1 0
roys
cewler

CeWLeR - Custom Word List generator Redefined. CeWL alternative in Python, based on the Scrapy framework.

1K 150 18
RevoltSecurities
subdominator

SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty

1K 759 125
bitthebyte
firefetch

A Firebase audit tool, mostly aimed at mobile apps.

1K 1 0
metlo-labs
metlo

Metlo is an open-source API security platform.

956 2K 105
m8sec
taser

Python resource library for creating security related tooling

927 78 13
Escape-Technologies
graphinder

🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️

861 228 14
sharsil
favicorn-osint

All-sources tool to search websites by favicons

754 192 15