0xdsm / PinkertonLinks
π΅οΈ Python project to crawl for JavaScript files and search for secrets like API keys, authorization tokens, hardcoded credentials, etc.
β426Updated 8 months ago
Alternatives and similar repositories for Pinkerton
Users that are interested in Pinkerton are comparing it to the libraries listed below
Sorting:
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headersβ309Updated last year
- jsleak is a tool to find secret , paths or links in the source code during the recon.β572Updated 4 months ago
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas iβ¦β208Updated last year
- Automated Tool for Testing Header Based Blind SQL Injectionβ322Updated 2 years ago
- NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applicationsβ339Updated 10 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzerβ382Updated 2 years ago
- Nuclei-AI-Promptsβ350Updated 7 months ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflowsβ300Updated 2 years ago
- β300Updated 3 years ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.β454Updated 3 years ago
- Smart context-based SSRF vulnerability scanner.β361Updated 3 years ago
- Never forget where you inject.β297Updated 5 months ago
- β417Updated 3 weeks ago
- β220Updated last year
- Local File Inclusion discovery and exploitation toolβ333Updated last year
- A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanningβ524Updated 2 years ago
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bountyβ725Updated 2 weeks ago
- 40,000+ Nuclei templates for security scanning and detection across diverse web applications and servicesβ343Updated 2 years ago
- Fast and customizable vulnerability scanner For JIRA written in Pythonβ345Updated last year
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and eβ¦β379Updated 2 years ago
- An Automated Subdomain Enumeration Toolβ290Updated last year
- A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.β842Updated last month
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.β262Updated last year
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.β255Updated last year
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration testβ¦β423Updated this week
- i will upload more templates here to share with the comunity.β568Updated last year
- Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what notβ513Updated 2 months ago
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and β¦β363Updated 10 months ago
- LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilitiesβ299Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issuesβ373Updated 2 years ago