BishopFox / GitGot
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
☆1,488Updated last year
Alternatives and similar repositories for GitGot:
Users that are interested in GitGot are comparing it to the libraries listed below
- Subdomain Takeover tool written in Go☆1,952Updated last year
- Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.☆1,276Updated last week
- This script is intended to automate your reconnaissance process in an organized fashion☆1,957Updated 3 years ago
- Mass scan IPs for vulnerable services☆1,029Updated 3 years ago
- Bruteforcing from various scanner output - Automatically attempts default creds on found services.☆2,186Updated this week
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…☆2,074Updated 8 months ago
- File upload vulnerability scanner and exploitation tool.☆3,180Updated last year
- A curated list of amazingly awesome Burp Extensions☆3,105Updated last month
- A default credential scanner.☆1,475Updated 3 years ago
- AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.☆1,347Updated 11 months ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,710Updated last week
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,714Updated 11 months ago
- List of Awesome Asset Discovery Resources☆2,062Updated 2 months ago
- Security Tool to Look For Interesting Files in S3 Buckets☆1,394Updated 11 months ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,771Updated 5 months ago
- Convolutional neural network for analyzing pentest screenshots☆1,087Updated last year
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,151Updated 2 years ago
- Find leaked secrets via github search☆2,922Updated last month
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,223Updated last year
- Collection of Scripts for shodan searching stuff.☆1,096Updated 4 months ago
- Striker is an offensive information and vulnerability scanner.☆2,261Updated last year
- HostHunter a recon tool for discovering hostnames using OSINT techniques.☆1,111Updated last year
- A python script that finds endpoints in JavaScript files☆3,870Updated 11 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,111Updated 9 months ago
- Gives you one-liners that aids in penetration testing operations, privilege escalation and more☆1,699Updated 5 months ago
- Notes about attacking Jenkins servers☆2,038Updated 8 months ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆840Updated 10 months ago
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,786Updated 10 months ago
- OSINT tools and more but without API key☆1,312Updated 11 months ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,394Updated 2 months ago