adeptex / whispers
Identify hardcoded secrets in static structured text (version 2)
☆87Updated last week
Related projects ⓘ
Alternatives and complementary repositories for whispers
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆87Updated last week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆107Updated 2 months ago
- A Powerful Network Reconnaissance Tool for Security Professionals☆96Updated 4 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆83Updated this week
- Stalker, the Extensible Attack Surface Management tool.☆79Updated this week
- API Security Vulnerability Scanner designed to help you secure your APIs.☆83Updated this week
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆69Updated 8 months ago
- ☆153Updated 2 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆196Updated last month
- Nuclei plugins to audit Chrome extensions☆64Updated 4 months ago
- Protect against subdomain takeover☆92Updated 5 months ago
- ☆110Updated last year
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆141Updated last month
- Crawlector is a threat hunting framework designed for scanning websites for malicious objects.☆125Updated 11 months ago
- Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets☆183Updated this week
- AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.☆46Updated this week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆149Updated 8 months ago
- A Pentest Collaboration and Reporting Tool☆50Updated this week
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆209Updated 2 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆155Updated last week
- Security tool against dependency typosquatting attacks☆34Updated this week
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆39Updated 3 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆100Updated 9 months ago
- ☆28Updated 3 months ago
- Search for sensitive data in Postman public library.☆184Updated 3 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆39Updated 11 months ago
- Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io☆77Updated 3 months ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆161Updated last month
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆98Updated 9 months ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆71Updated 9 months ago