π΅οΈ Python project to crawl for JavaScript files and search for secrets like API keys, authorization tokens, hardcoded credentials, etc.
β428May 15, 2025Updated 10 months ago
Alternatives and similar repositories for Pinkerton
Users that are interested in Pinkerton are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- πΉ Python project to bruteforce Apache Tomcat manager login with known-default credentialsβ99Mar 12, 2024Updated 2 years ago
- π¦ Python project to identify and scan for vulnerabilities related to the Joomla CMS project. It scans for common misconfigurations and pβ¦β173May 2, 2024Updated last year
- Jeeves SQLI Finderβ216May 13, 2022Updated 3 years ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secretsβ1,533Mar 8, 2026Updated 2 weeks ago
- A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanningβ520Jul 5, 2023Updated 2 years ago
- declutters url lists for crawling/pentestingβ1,538Feb 23, 2025Updated last year
- Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance frameworkβ169Feb 4, 2023Updated 3 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzerβ384May 19, 2023Updated 2 years ago
- Collect XSS vulnerable parameters from entire domain.β155Jul 29, 2022Updated 3 years ago
- π² Apepe is a project developed to help to capture informations from a Android app through his APK file. It can be used to extract the coβ¦β140Oct 15, 2025Updated 5 months ago
- γπγA tool used to hunt down API key leaks in JS files and pagesβ866Mar 12, 2026Updated last week
- Finding XSS during reconβ272Sep 13, 2022Updated 3 years ago
- bypass-url-parserβ1,118Mar 14, 2026Updated last week
- Find endpoints on GitHub.β215Mar 28, 2023Updated 2 years ago
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLsβ¦β12May 28, 2023Updated 2 years ago
- Prototype pollution scanner using headless chromeβ217Jul 27, 2022Updated 3 years ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for cβ¦β437Dec 30, 2025Updated 2 months ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.β109Mar 1, 2022Updated 4 years ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflowsβ300Sep 8, 2023Updated 2 years ago
- Filter and enrich a list of subdomains by levelβ210Sep 25, 2023Updated 2 years ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!β2,568Mar 8, 2026Updated 2 weeks ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a targetβ47Apr 1, 2023Updated 2 years ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logicβ284Mar 6, 2026Updated 2 weeks ago
- Find subdomains on GitLab.β107Apr 28, 2024Updated last year
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headersβ312Mar 31, 2024Updated last year
- π Collection of regexp pattern for security passive scanningβ116Feb 18, 2023Updated 3 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.β184Nov 22, 2021Updated 4 years ago
- π WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.β27May 23, 2023Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,503Jan 8, 2026Updated 2 months ago
- Make URL path combinations using a wordlistβ171Sep 25, 2023Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issuesβ374Jul 25, 2023Updated 2 years ago
- A repository that includes all the important wordlists used while bug hunting.β1,386Mar 11, 2023Updated 3 years ago
- Never forget where you inject.β299Aug 15, 2025Updated 7 months ago
- Scrape domain names from SSL certificates of arbitrary hostsβ689Mar 31, 2024Updated last year
- Fast and customizable vulnerability scanner For JIRA written in Pythonβ344Dec 31, 2024Updated last year
- Subdomains analysis and generation tool. Reveal the hidden!β245Jun 8, 2025Updated 9 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the intβ¦β140Dec 7, 2024Updated last year
- π Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project suppβ¦β18Apr 18, 2023Updated 2 years ago
- Hidden parameters discovery suiteβ2,033Sep 8, 2024Updated last year