SpectralOps / netz
Discover internet-wide misconfigurations while drinking coffee
☆387Updated 3 years ago
Related projects: ⓘ
- Private key usage verification☆402Updated 8 months ago
- ☆298Updated this week
- Awesome cloud enumerator☆856Updated last month
- High speed/Low cost CommonCrawl RegExp in Node.js☆241Updated 5 months ago
- A tool to hunt for credentials in github wild AKA git*hunt☆291Updated last year
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆122Updated 3 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆330Updated 4 years ago
- Yar is a tool for plunderin' organizations, users and/or repositories.☆231Updated 3 years ago
- A fast and secure multi protocol honeypot.☆303Updated 2 years ago
- An open source intelligence tool to crawl the graph of certificate Alternate Names☆341Updated 7 months ago
- automated web assets enumeration & scanning [DEPRECATED]☆285Updated last year
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆840Updated this week
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆318Updated 2 weeks ago
- FestIn - Open S3 Bucket Scanner☆227Updated 3 years ago
- Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust☆382Updated 4 months ago
- Flamingo captures credentials sprayed across the network by various IT and security products.☆451Updated 5 months ago
- Scan only once by IP address and reduce scan times with Nmap for large amounts of data.☆383Updated last year
- Search exposed EBS volumes for secrets☆278Updated last year
- Finding exposed secrets and personal data in GitLab☆195Updated last year
- Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Mu…☆216Updated 3 years ago
- WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…☆151Updated 5 months ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆667Updated 11 months ago
- ☆189Updated this week
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆209Updated 3 years ago
- Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.☆615Updated last month
- Collection of scripts & fingerprinting tricks for Shodan.io☆239Updated 4 years ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆388Updated 3 weeks ago
- A passive subdomain finder☆324Updated last year
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆284Updated this week
- A golang utility to spider through a website searching for additional links.☆327Updated 3 years ago