BishopFox / GitGot
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
☆1,475Updated 10 months ago
Alternatives and similar repositories for GitGot:
Users that are interested in GitGot are comparing it to the libraries listed below
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…☆2,051Updated 5 months ago
- Subdomain Takeover tool written in Go☆1,926Updated last year
- Mass scan IPs for vulnerable services☆1,029Updated 2 years ago
- AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.☆1,334Updated 9 months ago
- OSINT tools and more but without API key☆1,281Updated 8 months ago
- Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.☆1,235Updated last week
- File upload vulnerability scanner and exploitation tool.☆3,154Updated last year
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,358Updated last week
- Discover Your Attack Surface!☆1,369Updated 2 years ago
- A default credential scanner.☆1,459Updated 3 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆992Updated 3 years ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆833Updated 8 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,211Updated last year
- A collection of tools to perform searches on GitHub.☆1,371Updated last year
- A python script that finds endpoints in JavaScript files☆3,789Updated 9 months ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,376Updated 11 months ago
- This script is intended to automate your reconnaissance process in an organized fashion☆1,939Updated 3 years ago
- HostHunter a recon tool for discovering hostnames using OSINT techniques.☆1,102Updated last year
- A curated list of amazingly awesome Burp Extensions☆3,040Updated 2 months ago
- A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.☆1,560Updated last month
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,642Updated this week
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,694Updated 8 months ago
- The Swiss Army knife for automated Web Application Testing☆2,185Updated 8 months ago
- Bruteforcing from various scanner output - Automatically attempts default creds on found services.☆2,069Updated this week
- List of Awesome Asset Discovery Resources☆2,012Updated 7 months ago
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,116Updated 5 years ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,353Updated this week
- Notes about attacking Jenkins servers☆2,018Updated 6 months ago
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.☆1,225Updated 8 months ago
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,759Updated 7 months ago