Open-source vulnerability disclosure and bug bounty program database
-
Updated
Jul 6, 2026 - Python
Open-source vulnerability disclosure and bug bounty program database
⚔️ Community maintained directory, MCP and API of 3,000+ active bug bounty programs and VDPs
Open-source vulnerability disclosure policy templates.
security.txt collection of most popular world-wide domains
CVE hunting harness for Claude Code - 20 skills, 5-agent team, systematic vulnerability research with false positive elimination
A nonprofit, open-source vulnerability disclosure platform built for security researchers.
Find sites vulnerable to github subdomain takeover
Coordinated Vulnerability Disclosure Policy
Automated Bash script to verify WordPress XML-RPC system.multicall vulnerabilities. Designed for responsible disclosure processes to demonstrate bypasses of traditional rate-limiting.
Mechanism-grounded taxonomy of 40 LLM jailbreak patterns across 10 categories. 8,000-trial bootstrap evaluation for the June 2026 frontier (Claude Opus 4-8, GPT-5.5, Gemini 3.5, DeepSeek V4). Every citation direct-WebFetch verified; refuted claims documented.
Security.txt Manager for WordPress. For more plugins, visit https://handyplugins.co/
🛡️ Discover and analyze critical vulnerabilities in Meta AI's Instagram Group Chat, ensuring robust security through comprehensive testing and reporting.
A local security awareness demo showing how missing HTTPS, HSTS, and expired SSL certificates expose users to credential interception, web spoofing, and MITM attacks.
bbrep is a community-maintained reputation index for public bug bounty and vulnerability disclosure programs.
Free AI safety stack + frontier adversarial red teaming. Policy engine, content scanner, behavioral monitor, MCP gateway. 350+ vulnerabilities found across NVIDIA, Microsoft, Meta, Google. MIT licensed.
The Internet Observatory (Obsrva) is a vulnerability research project founded by independent security researcher Tyler Butler. Obsrva engages product vendors in coordinated disclosures, publishes vulnerability advisories, and creates proof of concept exploits.
Bug bounty report demonstrating prompt injection and command execution vulnerabilities in Meta AI's Instagram Group Chat
Responsible Disclosure Policy of Bigbank AS
Technical analysis and Proof of Concept (PoC) regarding environment variable exfiltration in containerized cloud sandboxes via side-channel data leaks.
Add a description, image, and links to the responsible-disclosure topic page so that developers can more easily learn about it.
To associate your repository with the responsible-disclosure topic, visit your repo's landing page and select "manage topics."