Alternatives and similar repositories for awesome-list-of-secrets-in-environment-variables

Users that are interested in awesome-list-of-secrets-in-environment-variables are comparing it to the libraries listed below

• p0dalirius / Awesome-RCE-techniques
  Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
  ☆1,927Updated 2 years ago
• httpvoid / writeups
  ☆1,192Updated 3 years ago
• hackerscrolls / SecurityTips
  ☆1,008Updated 3 years ago
• 0xsha / CloudBrute
  Awesome cloud enumerator
  ☆1,054Updated 7 months ago
• 0xCGonzalo / Golden-Guide-for-Pentesting
  Golden Guide
  ☆505Updated 3 months ago
• laluka / bypass-url-parser
  bypass-url-parser
  ☆1,097Updated last week
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆934Updated 9 months ago
• chvancooten / BugBountyScanner
  A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
  ☆912Updated 6 months ago
• GrrrDog / weird_proxies
  Reverse proxies cheatsheet
  ☆1,852Updated last year
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆1,020Updated 2 months ago
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆997Updated last year
• h33tlit / secret-regex-list
  List of regex for scraping secret API keys and juicy information.
  ☆717Updated 3 years ago
• aufzayed / bugbounty
  Bugbounty Resources
  ☆541Updated 2 years ago
• carlospolop / PurplePanda
  Identify privilege escalation paths within and across different clouds
  ☆705Updated this week
• trufflesecurity / Trufflehog-Chrome-Extension
  ☆408Updated 4 years ago
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆764Updated last year
• indianajson / can-i-take-over-dns
  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.
  ☆1,061Updated 8 months ago
• NagliNagli / Shockwave-OSS
  ☆757Updated last year
• yeswehack / PwnFox
  PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.
  ☆1,228Updated last year
• pop3ret / AWSome-Pentesting
  My cheatsheet notes to pentest AWS infrastructure
  ☆691Updated 3 years ago
• michelin / ChopChop
  ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
  ☆715Updated 2 years ago
• Cyber-Guy1 / API-SecurityEmpire
  API Security Project aims to present unique attack & defense methods in API Security field
  ☆1,420Updated last year
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆963Updated 3 years ago
• sh377c0d3 / Payloads
  Payload Arsenal for Pentration Tester and Bug Bounty Hunters
  ☆914Updated 2 years ago
• 0xInfection / LogMePwn
  A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.
  ☆398Updated 10 months ago
• yeswehack / vulnerable-code-snippets
  Twitter vulnerable snippets
  ☆1,074Updated 7 months ago
• projectdiscovery / cloudlist
  Cloudlist is a tool for listing Assets from multiple Cloud Providers.
  ☆981Updated this week
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆757Updated 3 years ago
• tillson / git-hound
  Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.
  ☆1,355Updated last week
• blacklanternsecurity / writehat
  A pentest reporting tool written in Python. Free yourself from Microsoft Word.
  ☆1,435Updated 7 months ago