NikhilPanwar / secrets-ninjaLinks
Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.
☆159Updated 2 months ago
Alternatives and similar repositories for secrets-ninja
Users that are interested in secrets-ninja are comparing it to the libraries listed below
Sorting:
- FrogPost: postMessage Security Testing Tool☆108Updated 2 months ago
- Abuse trust-boundaries to bypass firewalls and network controls☆385Updated 6 months ago
- PyCript Websocket is now merge into https://github.com/Anof-cyber/PyCript, this repo is not available anymore.☆82Updated last month
- Burp Suite extension for testing Passkey systems.☆75Updated 10 months ago
- AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.☆75Updated 5 months ago
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆171Updated last month
- A web based checklist driven note taking app following bug bounty and web app pentest methodology.☆41Updated 7 months ago
- A collection of Turbo Intruder scripts.☆69Updated last year
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆109Updated 8 months ago
- Hijack a slack bot to phish your way in☆57Updated 6 months ago
- AWS IAM Username Enumerator and Password Spraying Tool in Python3☆87Updated 2 months ago
- A research project to add some brrrrrr to Burp☆197Updated last year
- A modular external attack surface mapping tool integrating tools for automated reconnaissance and bug bounty workflows.☆76Updated 10 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆235Updated last year
- Verizon Burp Extensions: AI Suite☆142Updated 9 months ago
- RADAR (Rapid Assessment of DNS And Reconnaissance) is an advanced DNS reconnaissance tool designed to identify technologies and services …☆103Updated 10 months ago
- ☆195Updated 9 months ago
- Agentic pentest tooling. Currently achieving around 78% on XBOW's benchmark in full black-box. Completely Self-hosted. Every model availa…☆152Updated this week
- Protection against HTML smuggling attacks.☆101Updated 7 months ago
- Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io☆84Updated last year
- SprayShark is a modular G-Suite password sprayer with threading!☆57Updated 8 months ago
- DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…☆37Updated 6 months ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆131Updated last year
- A Go-based utility that processes input through multiple AI models concurrently (OpenAI, Claude, and Gemini) and provides a summarized co…☆89Updated 7 months ago
- ☆244Updated last month
- AI/LLM local model integration for analysis of reconftw results☆91Updated 9 months ago
- TruffleHog Explorer, a user-friendly web-based tool to visualize and analyze data extracted using TruffleHog.☆53Updated 2 months ago
- VulnSeer combines the power of Nmap's service detection with multiple AI providers to deliver intelligent vulnerability assessments. Unli…☆42Updated 8 months ago
- Identify hardcoded secrets in static structured text (version 2)☆97Updated last year
- A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.☆392Updated this week