SecureStackCo / actions-secretsLinks
Adding this GitHub Action will scan your repository for sensitive data in your source code. We find things like passwords, server host strings, API keys, .env and config files and more
☆31Updated 2 years ago
Alternatives and similar repositories for actions-secrets
Users that are interested in actions-secrets are comparing it to the libraries listed below
Sorting:
- This is the Go Server that relays all HTTP requests and responses between clients.☆28Updated 2 years ago
- Attempt zone transfers on domains☆18Updated 4 years ago
- Compilation of JavaScript XSS oneliners payloads that rocks your nuts!☆24Updated 8 years ago
- Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…☆44Updated last year
- Quickly add http and https domains to BurpSuite's scope with all paths.☆16Updated 9 years ago
- websocket-connection-smuggler☆66Updated 5 years ago
- Timeinator is an extension for Burp Suite that can be used to perform timing attacks over an unreliable network such as the internet.☆22Updated 2 years ago
- A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates Java…☆26Updated 3 years ago
- Automated Google dorking with custom search engines☆26Updated 5 years ago
- A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition …☆22Updated 3 years ago
- Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…☆15Updated 2 years ago
- Default plugins for Jaeles Scanner☆35Updated 5 years ago
- A command-line tool for Cross-Site WebSocket Hijacking☆44Updated 2 years ago
- Reconness Agents Script☆31Updated 3 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆46Updated 2 years ago
- A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging a…☆14Updated 3 years ago
- XSS scanning with Dalfox on Github-action☆26Updated 2 years ago
- A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.☆24Updated 3 years ago
- Database to store previously found subdomains☆66Updated 3 months ago
- Finds Documents On Cloud Assets Using grayhatwarfare API for short urls☆22Updated 3 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆47Updated 6 years ago
- A python tool which runs to display random publicly disclosed Hackerone reports when bored. Automatically opens the report in browser.(Ad…☆42Updated 3 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Updated 5 years ago
- Automated compromise detection of the world's most popular packages☆17Updated 2 years ago
- Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.☆13Updated 4 years ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆34Updated 3 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing☆19Updated 3 years ago
- Tool to find stored robots.txt files from the past☆18Updated 2 years ago
- A compilation of network scanning strategies to find vulnerable devices☆73Updated 3 years ago
- A simple tool which makes creating nuclei templates even easier.☆36Updated last year