alifathi-h1 / gh_scannerLinks
GH Scanner Tool is written in Python3 and designed for penetration testers and bug bounty hunters to scan Organization/User repositories for leaks such as GitHub Token, AWS Access Keys, Slack Webhooks, Firebase, Private Keys and more.
☆34Updated last year
Alternatives and similar repositories for gh_scanner
Users that are interested in gh_scanner are comparing it to the libraries listed below
Sorting:
- A tool for testing subdomain takeover possibilities at a mass scale.☆49Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Host Header Injection Checker☆81Updated 3 years ago
- My recon script☆50Updated 5 years ago
- Find subdomains and takeovers.☆85Updated 2 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 5 years ago
- Framework to automate Bug Bounty Reconnaissance☆44Updated 4 years ago
- sub domain wild card filtering tool☆41Updated 5 years ago
- Extracts subdomains from a specified domain using https://recon.dev.☆16Updated 4 years ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆58Updated 3 years ago
- Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.☆41Updated 5 years ago
- Extracting api keys and secrets by requesting each url at the your list.☆18Updated 11 months ago
- ☆19Updated 4 years ago
- sonarbyte is a simple and fast subdomain scanner written in go to extract subdomain from Rapid7's DNS Database using omnisint's api.☆27Updated 2 years ago
- ☆20Updated 2 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆44Updated 4 years ago
- Tool to automate recon☆43Updated 3 years ago
- Get all the CNs from a list of domains☆46Updated 3 years ago
- Virtual host wordlist☆51Updated 4 years ago
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago
- Additional nuclei templates☆37Updated last year
- Some of my bug bounty tools☆51Updated 5 years ago
- List all public repositories for (valid) GitHub usernames☆73Updated last year
- Tool for making it easy to collect dns results from the CLI☆40Updated 9 months ago
- A Tool to find subdomains from hackerone reports.☆17Updated 3 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆92Updated 3 years ago
- A list of Awesome Bughunting oneliners , collected from the various sources☆68Updated last year
- Stuff for bug bounty☆28Updated 2 years ago
- Dump all available paths and/or endpoints on WADL file.☆93Updated this week