a7medibrahim12 / github-recon
Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github dorks can reveal sensitive personal and/or organizational information such as private keys, credentials, authentication tokens, etc.This list is supposed to be useful performing pen-testing of systems.
☆20Updated 6 months ago
Alternatives and similar repositories for github-recon:
Users that are interested in github-recon are comparing it to the libraries listed below
- Web Penetration Testing Course Materials☆32Updated 9 months ago
- فایل ها و فیلم های ورکشاپ ردتیم 2024 با هانت لرن☆31Updated 5 months ago
- An Vulnerability detection and Exploitation tool for CVE-2024-7339☆17Updated 6 months ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Updated 11 months ago
- ☆16Updated last year
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated last year
- Top 400 passwords as per HaveIBeenPwned☆21Updated 4 months ago
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- List of MurmurHash3 favicon hashes of widely used technologies by vendor to search with Shodan.☆22Updated 10 months ago
- A simple utility to quickly gather historic Port and CVE exposures from an IP range.☆38Updated last year
- XML-RPC Vulnerability Checker and Directory Fuzzer☆23Updated last year
- Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers☆26Updated 2 months ago
- This repository contains the best fuzzing wordlist files☆29Updated 2 months ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- Cyber Security Club, Offensive Operations Section (Red Team) learning pathway.☆28Updated last year
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆18Updated last year
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆35Updated last year
- FireHawk: The Elite Firebase Security Testing Utility☆18Updated 9 months ago
- RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a gi…☆16Updated 8 months ago
- A utility for recursively traversing SSL/TLS certificates for collecting DNS names☆45Updated last year
- A Red Teaming tool focused on profiling the target.☆26Updated 8 months ago
- bash script for automating subdomain enumeration process either passive or active☆27Updated 2 months ago
- ☆14Updated last year
- A small executable to trick a user to authenticate using code matching MFA☆68Updated last year
- Get some useful data from Clouds for your targets☆20Updated last month
- A Moodle Scanner☆39Updated 3 months ago
- Keycloak admin API allows low privilege users to use administrative functions☆23Updated 4 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆40Updated 2 months ago
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆13Updated 3 months ago