https://github.com/Brum3ns/firefly
https://github.com/redhuntlabs/HTTPLoot
An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code of sites.
https://github.com/Bo0oM/fuzz.txt
https://github.com/0xlittleboy/fuzz4bounty
This repository contains publicly available wordlists for Bug hunting. The main Objective for creating this repo is to bring all the available wordlists at one place.
https://github.com/root-tanishq/userefuzz
pythonWorks on linux, Windows and MacOS based systemshttps://github.com/minimaxir/big-list-of-naughty-strings
https://github.com/1N3/IntruderPayloads
https://github.com/foospidy/payloads
https://github.com/Muhammd/Awesome-Payloads
https://github.com/swisskyrepo/PayloadsAllTheThings
https://github.com/Karanxa/Bug-Bounty-Wordlists
A repository that includes all the important wordlists used while bug hunting.
https://github.com/n0kovo/n0kovo_subdomains
An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.