a7medibrahim12 / github-reconLinks
Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github dorks can reveal sensitive personal and/or organizational information such as private keys, credentials, authentication tokens, etc.This list is supposed to be useful performing pen-testing of systems.
☆21Updated last year
Alternatives and similar repositories for github-recon
Users that are interested in github-recon are comparing it to the libraries listed below
Sorting:
- Web Penetration Testing Course Materials☆32Updated last year
- ☆19Updated 2 years ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Updated 11 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Updated last year
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration☆12Updated last year
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Updated last year
- XML-RPC Vulnerability Checker and Directory Fuzzer☆22Updated 2 years ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆33Updated last year
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated last year
- Burp extension used to snip any header from all the requests.☆23Updated last year
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated 2 years ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Updated 2 years ago
- An advanced scanner for exposed secrets in web pages, APIs, and source code.☆12Updated 6 months ago
- Template Nuclei SSTI☆33Updated 2 years ago
- This repository contains the best fuzzing wordlist files☆34Updated 11 months ago
- dnsprober is a fast and multipurpose DNS reconnaissance tool designed for efficient DNS probing and enumeration. It supports multiple DNS…☆33Updated 4 months ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- CrlfiX☆20Updated 9 months ago
- vhost scanning☆36Updated 2 years ago
- A collaborative hub for Nuclei templates. Contribute, share, and explore powerful vulnerability detection tools!☆32Updated 9 months ago
- bash script for automating subdomain enumeration process either passive or active☆29Updated 10 months ago
- This is an AD pentest tools collection☆59Updated last year
- All the code snippets from my Secure Code Review series on youtube (youtube.com/@muqsitbaig)!☆23Updated last year
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆41Updated last year
- A small executable to trick a user to authenticate using code matching MFA☆69Updated 2 years ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆49Updated 10 months ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated 2 years ago
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆62Updated last year
- A simple utility to quickly gather historic Port and CVE exposures from an IP range.☆39Updated last year