[GH-ISSUE #82] FileShot.io – zero-knowledge encrypted file sharing for PoC, screenshots, and reports #1493

Closed
opened 2026-06-16 01:47:24 -05:00 by GiteaMirror · 0 comments
Owner

Originally created by @FileShot on GitHub (Mar 3, 2026).
Original GitHub issue: https://github.com/vavkamil/awesome-bugbounty-tools/issues/82

Bug bounty researchers regularly need to share sensitive artifacts with program teams: PoC files, screenshots, video captures, HTTP logs, or raw request/response data. FileShot.io does this without storing anything in plaintext.

How it works:

  • Upload any file — AES-256-GCM encryption happens in the browser before the upload
  • The decryption key exists only in the URL fragment — the server is completely blind to the contents
  • Share the link with the program; they open it, file decrypts locally
  • No account required, files expire

Why this matters for bug bounty specifically:

  • Sensitive auth tokens, session data, or internal endpoints in your PoC aren't sitting on a third-party server in plaintext
  • Useful for sharing evidence with programs that don't have a secure upload portal

Open source MIT: https://github.com/FileShot/FileShotZKE
Live: https://fileshot.io

Originally created by @FileShot on GitHub (Mar 3, 2026). Original GitHub issue: https://github.com/vavkamil/awesome-bugbounty-tools/issues/82 Bug bounty researchers regularly need to share sensitive artifacts with program teams: PoC files, screenshots, video captures, HTTP logs, or raw request/response data. FileShot.io does this without storing anything in plaintext. How it works: - Upload any file — AES-256-GCM encryption happens in the browser before the upload - The decryption key exists only in the URL fragment — the server is completely blind to the contents - Share the link with the program; they open it, file decrypts locally - No account required, files expire Why this matters for bug bounty specifically: - Sensitive auth tokens, session data, or internal endpoints in your PoC aren't sitting on a third-party server in plaintext - Useful for sharing evidence with programs that don't have a secure upload portal Open source MIT: https://github.com/FileShot/FileShotZKE Live: https://fileshot.io
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/awesome-bugbounty-tools#1493