N0MoreSecr3ts / wraith
Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
β207Updated last year
Alternatives and similar repositories for wraith:
Users that are interested in wraith are comparing it to the libraries listed below
- secretz, minimizing the large attack surface of Travis CIβ325Updated 2 years ago
- Simple shell script for automated domain recognition with some toolsβ299Updated 4 years ago
- Find cloud assets that no one wants exposed π βοΈβ338Updated 4 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.β245Updated last week
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server forβ¦β190Updated 4 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures tβ¦β209Updated 4 years ago
- An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.β210Updated 4 years ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingβ¦β205Updated last year
- Bugbounty scope toolβ325Updated 2 weeks ago
- Yar is a tool for plunderin' organizations, users and/or repositories.β237Updated 4 years ago
- Python library and CLI for the Bug Bounty Recon APIβ223Updated 3 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wikiβ203Updated 4 months ago
- Cross Origin Resource Sharing MisConfiguration Scannerβ172Updated 3 years ago
- Find AWS S3 buckets and test their permissions.β379Updated last year
- A tool to find subdomains or domains from passive sources.β112Updated 4 years ago
- A script that can resolve an input file of domains and scan them with masscanβ157Updated 4 years ago
- Pentesting/Bugbounty Dockerfiles.β175Updated 3 years ago
- FestIn - Open S3 Bucket Scannerβ231Updated 4 years ago
- ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on scβ¦β318Updated 2 weeks ago
- You can read the writeup on this script hereβ193Updated 3 years ago
- β173Updated 2 years ago
- My Recon Automationβ194Updated 3 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.β440Updated 4 years ago
- Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers β¦β145Updated 11 months ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomaiβ¦β222Updated 4 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts aβ¦β364Updated 2 years ago
- The project contains multiple shell scripts for automating the tasks during recon.β175Updated last year
- A phased, evasive Path Traversal + LFI scanning & exploitation tool in Pythonβ199Updated 3 years ago
- A simple SSRF-testing sheriff written in Goβ324Updated 4 months ago
- Scripts to help with different ffuf tasks and workflowsβ220Updated last year