SpectralOps / netz
Discover internet-wide misconfigurations while drinking coffee
☆391Updated 3 years ago
Alternatives and similar repositories for netz:
Users that are interested in netz are comparing it to the libraries listed below
- Find cloud assets that no one wants exposed 🔎 ☁️☆339Updated 4 years ago
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.☆153Updated 2 years ago
- High speed/Low cost CommonCrawl RegExp in Node.js☆246Updated 11 months ago
- Private key usage verification☆432Updated 3 months ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆210Updated 4 years ago
- An open source intelligence tool to crawl the graph of certificate Alternate Names☆347Updated last year
- FestIn - Open S3 Bucket Scanner☆232Updated 4 years ago
- Scan only once by IP address and reduce scan times with Nmap for large amounts of data.☆385Updated last year
- Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Mu…☆221Updated 4 years ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆919Updated this week
- WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…☆156Updated last year
- Fast HTTP enumerator☆478Updated last week
- ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.☆723Updated 2 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆620Updated 5 years ago
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆127Updated 3 years ago
- Awesome cloud enumerator☆992Updated 3 weeks ago
- Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still…☆414Updated last month
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆688Updated last year
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…☆124Updated last year
- Search exposed EBS volumes for secrets☆297Updated last year
- A tool to hunt for credentials in github wild AKA git*hunt☆294Updated 2 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆288Updated 2 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆246Updated last week
- SolarWinds Orion Account Audit / Password Dumping Utility☆352Updated last year
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆269Updated 6 months ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆265Updated 2 years ago
- A pre-DDoS security assessment tool☆120Updated 3 years ago
- Finding exposed secrets and personal data in GitLab☆197Updated 4 months ago
- Attack Surface Management since before Attack Surface Management was a thing☆639Updated this week