MandConsultingGroup / porch-pirateLinks
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collections, requests, users and teams. Porch Pirate can be used as a client or be incorporated into your own applications.
☆429Updated last year
Alternatives and similar repositories for porch-pirate
Users that are interested in porch-pirate are comparing it to the libraries listed below
Sorting:
- AI-powered ffuf wrapper☆528Updated 9 months ago
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆246Updated 6 months ago
- ☆498Updated last year
- ☆483Updated this week
- Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not☆451Updated 2 weeks ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆385Updated 5 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆689Updated 4 months ago
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆351Updated last year
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆346Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆428Updated 7 months ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆450Updated 3 years ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆251Updated last year
- Search for sensitive data in Postman public library.☆212Updated last month
- Discover new target domains using Content Security Policy☆481Updated this week
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.☆247Updated last year
- Nuclei-AI-Prompts☆233Updated 2 months ago
- Opensource assets and vulnerability scanning tool☆183Updated 2 months ago
- Automated Tool for Testing Header Based Blind SQL Injection☆284Updated 2 years ago
- Local File Inclusion discovery and exploitation tool☆317Updated 8 months ago
- A suite for hunting suspicious targets, expose domains and phishing discovery☆368Updated 2 months ago
- Golang client for querying SecurityTrails API data☆570Updated last year
- The repository contains useful GitHub dorks for finding open-source vulnerabilities.☆84Updated last year
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆601Updated last month
- CT Log Scanner☆395Updated 5 months ago
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty☆658Updated 3 months ago
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆242Updated last year
- ☆174Updated last week
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆273Updated 3 months ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆257Updated 10 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆370Updated 3 months ago