Eilonh / s3crets_scanner
☆566Updated last year
Related projects ⓘ
Alternatives and complementary repositories for s3crets_scanner
- My cheatsheet notes to pentest AWS infrastructure☆658Updated 2 years ago
- Automating situational awareness for cloud penetration tests.☆1,959Updated last month
- Automated Penetration Testing Reporting System☆801Updated this week
- A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆386Updated 7 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆861Updated this week
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆381Updated 3 months ago
- The Internets #1 Subdomain Takeover Tool☆227Updated 2 months ago
- Create your own vulnerable by design AWS penetration testing playground☆331Updated 6 months ago
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆634Updated last month
- Secret Magpie - Secret Detection Tool☆202Updated 4 months ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆286Updated last week
- ProjectDiscovery's Open Source Tool Manager☆733Updated this week
- Awesome cloud enumerator☆895Updated 3 months ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆448Updated 7 months ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆569Updated 3 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆845Updated 10 months ago
- Sandman is a NTP based backdoor for red team engagements in hardened networks.☆771Updated 7 months ago
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆266Updated 2 months ago
- The most powerful CRLF injection (HTTP Response Splitting) scanner.☆556Updated last year
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,049Updated 9 months ago
- Pen Test Report Generation and Assessment Collaboration☆444Updated last week
- List of regex for scraping secret API keys and juicy information.☆683Updated 2 years ago
- AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,☆563Updated 8 months ago
- Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search …☆515Updated 9 months ago
- Attack surface detector that identifies endpoints by static analysis☆607Updated this week
- OXO is a security scanning orchestrator for the modern age.☆529Updated last week
- cloudgrep is grep for cloud storage☆319Updated last week
- Tools to assess DNS security.☆148Updated 8 months ago
- ☆292Updated 3 months ago
- An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …☆391Updated 2 years ago