DolosGroup / Jenkins-Pillage

Related projects ⓘ

Alternatives and complementary repositories for Jenkins-Pillage

• glen-mac / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆110Updated 5 years ago
• 0xbharath / slurp-old
  A tool to enumerate S3 buckets manually or via certstream
  ☆80Updated last year
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• random-robbie / AWS-Scanner
  Scans a list of websites for Cloudfront or S3 Buckets
  ☆104Updated 2 years ago
• michenriksen / bucketlist
  Amazon S3 bucket spelunking!
  ☆84Updated 7 years ago
• VirtueSecurity / aws-extender-cli
  AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…
  ☆81Updated 4 years ago
• Parasimpaticki / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆53Updated 4 years ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 5 years ago
• smiegles / mass3
  ☆124Updated 5 years ago
• moloch-- / burp-multiplayer
  Burp with Friends
  ☆99Updated last year
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆89Updated 8 months ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• pseudo-security / slacksecrets
  Scans Slack for API tokens, credentials, passwords, and more using YARA rules
  ☆38Updated 3 years ago
• raesene / TestingScripts
  A More or less Random Collection of Scripts for security Testing.
  ☆64Updated 2 years ago
• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆76Updated 4 years ago
• nccgroup / SSHession
  The SSH Multiplex Backdoor Tool
  ☆62Updated 5 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 2 years ago
• rcx / tcpbin
  Very crude and poorly written HTTP(s) and SMTP bin
  ☆92Updated 3 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆86Updated last month
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 4 years ago
• needmorecowbell / giggity
  Wraps github api for openly available information about an organization, user, or repo
  ☆126Updated last year
• we45 / Serverless-Workshop
  Serverless Workshop
  ☆16Updated last year
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 7 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago
• DenizParlak / hayat
  Hayat is a script for report and analyze Google Cloud Platform resources.
  ☆79Updated 4 years ago
• JR0ch17 / S3Cruze
  All-in-one AWS S3 bucket tool for pentesters.
  ☆70Updated 5 years ago
• pwnwiki / webappdefaultsdb
  A DB of known Web Application Admin URLS, Username/Password Combos and Exploits
  ☆153Updated 9 years ago
• jordanpotti / OffensiveCloudDistribution
  Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.
  ☆91Updated last year