Alternatives and similar repositories for awesome-list-of-secrets-in-environment-variables:

Users that are interested in awesome-list-of-secrets-in-environment-variables are comparing it to the libraries listed below

• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆946Updated 3 months ago
• carlospolop / PurplePanda
  Identify privilege escalation paths within and across different clouds
  ☆685Updated 4 months ago
• GrrrDog / weird_proxies
  Reverse proxies cheatsheet
  ☆1,803Updated last year
• 0xsha / CloudBrute
  Awesome cloud enumerator
  ☆991Updated 3 weeks ago
• laluka / bypass-url-parser
  bypass-url-parser
  ☆1,063Updated this week
• Esc4iCEscEsc / skanuvaty
  Dangerously fast DNS/network/port scanner
  ☆897Updated 3 years ago
• httpvoid / writeups
  ☆1,183Updated 2 years ago
• bigb0sss / RedTeam-OffensiveSecurity
  Tools & Interesting Things for RedTeam Ops
  ☆2,177Updated 2 years ago
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆967Updated 9 months ago
• NagliNagli / Shockwave-OSS
  ☆749Updated 9 months ago
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆863Updated 2 months ago
• p0dalirius / Awesome-RCE-techniques
  Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
  ☆1,883Updated last year
• mdsecresearch / BurpSuiteSharpener
  ☆518Updated last year
• dwisiswant0 / crlfuzz
  A fast tool to scan CRLF vulnerability written in Go
  ☆1,403Updated last week
• mhaskar / DNSStager
  Hide your payload in DNS
  ☆612Updated last year
• pop3ret / AWSome-Pentesting
  My cheatsheet notes to pentest AWS infrastructure
  ☆672Updated 2 years ago
• h33tlit / secret-regex-list
  List of regex for scraping secret API keys and juicy information.
  ☆701Updated 2 years ago
• silentsignal / burp-log4shell
  Log4Shell scanner for Burp Suite
  ☆483Updated last year
• lutfumertceylan / top25-parameter
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,747Updated 9 months ago
• mazen160 / secrets-patterns-db
  Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
  ☆1,119Updated last year
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆860Updated 3 years ago
• Puliczek / CVE-2021-44228-PoC-log4j-bypass-words
  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
  ☆933Updated 3 years ago
• six2dez / pentest-book
  ☆1,669Updated 2 weeks ago
• sh377c0d3 / Payloads
  Payload Arsenal for Pentration Tester and Bug Bounty Hunters
  ☆898Updated last year
• devploit / nomore403
  Tool to bypass 403/40X response codes.
  ☆1,222Updated 3 months ago
• aufzayed / bugbounty
  Bugbounty Resources
  ☆536Updated last year
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,389Updated 2 years ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆2,042Updated 8 months ago
• ihebski / A-Red-Teamer-diaries
  RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
  ☆1,768Updated 10 months ago
• hakluke / hakoriginfinder
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆863Updated last year