a7medibrahim12 / github-recon
Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github dorks can reveal sensitive personal and/or organizational information such as private keys, credentials, authentication tokens, etc.This list is supposed to be useful performing pen-testing of systems.
☆19Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for github-recon
- Web Penetration Testing Course Materials☆33Updated 5 months ago
- ☆16Updated last year
- Custom nuclei templates for bug hunting.....☆23Updated 5 months ago
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆21Updated 2 months ago
- bash script for automating subdomain enumeration process either passive or active☆26Updated last year
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆31Updated 5 months ago
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆37Updated 6 months ago
- All the code snippets from my Secure Code Review series on youtube (youtube.com/@muqsitbaig)!☆9Updated 3 months ago
- A utility for recursively traversing SSL/TLS certificates for collecting DNS names☆45Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆28Updated 3 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆52Updated 4 months ago
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆20Updated 9 months ago
- ☆18Updated last year
- A single script to install important Pentesting Tools and wordlists on Debian based Linux OS.☆15Updated this week
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆27Updated 8 months ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆30Updated 10 months ago
- Top 400 passwords as per HaveIBeenPwned☆20Updated 3 weeks ago
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration☆12Updated 5 months ago
- CoupDeWeb is an automated web vulnerability scanner designed for security researchers and developers. It scans for potential vulnerable …☆19Updated 3 weeks ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆35Updated 10 months ago
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆39Updated last year
- Web Hacking and Red Teaming MindMap☆68Updated last year
- An Incredibly Annoying, Insufferable Authentication Implementation☆30Updated 6 months ago
- Raven is a powerful and customizable web crawler written in Go.☆37Updated 2 months ago
- A Burp Extension that makes it easier to view all script code on a Response.☆12Updated last year
- فایل ها و فیلم های ورکشاپ ردتیم 2024 با هانت لرن☆26Updated last month
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆30Updated last year
- ☆26Updated last year
- Recon scripts for Red Team and Web blackbox auditing☆29Updated last week