DolosGroup / Jenkins-Pillage
A tool for automatically gathering sensitive information from exposed Jenkins servers
☆103Updated 2 years ago
Alternatives and similar repositories for Jenkins-Pillage:
Users that are interested in Jenkins-Pillage are comparing it to the libraries listed below
- Amazon S3 bucket spelunking!☆86Updated 7 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆111Updated 6 years ago
- A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform☆165Updated 7 months ago
- Ruby command-line interface to Burp Suite's REST API☆59Updated 5 years ago
- A tool to enumerate S3 buckets manually or via certstream☆82Updated last year
- 🏰 A Python script for AWS S3 bucket enumeration.☆54Updated 4 years ago
- Scans a list of websites for Cloudfront or S3 Buckets☆104Updated 3 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆91Updated last year
- Hayat is a script for report and analyze Google Cloud Platform resources.☆80Updated 5 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆82Updated 4 years ago
- Takes ip range, Scan all open SSL Certs, Grab Cnames☆112Updated 6 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 8 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- A More or less Random Collection of Scripts for security Testing.☆65Updated 2 years ago
- Scan for and exploit Consul agents☆40Updated 5 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 7 years ago
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆38Updated 4 years ago
- retrive metadata endpoint data with these one liners.☆38Updated 4 years ago
- Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.☆93Updated last year
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 6 years ago
- A Firefox extension and WebSocket handler that checks S3/Google/Azure buckets while your browse.☆37Updated 4 years ago
- A tool to evaluate Content Security Policies.☆70Updated 4 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- Testing/collecting some container breakouts☆93Updated 5 years ago
- Pillage a git repo found in an accessible web root☆61Updated 13 years ago
- Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled interval…☆46Updated 6 years ago
- The SSH Multiplex Backdoor Tool☆64Updated 5 years ago
- Proof-of-concept CORS exploitation tool.☆35Updated 5 years ago