alifathi-h1 / gh_scannerLinks
GH Scanner Tool is written in Python3 and designed for penetration testers and bug bounty hunters to scan Organization/User repositories for leaks such as GitHub Token, AWS Access Keys, Slack Webhooks, Firebase, Private Keys and more.
☆34Updated 5 months ago
Alternatives and similar repositories for gh_scanner
Users that are interested in gh_scanner are comparing it to the libraries listed below
Sorting:
- Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.☆41Updated 6 years ago
- A tool for testing subdomain takeover possibilities at a mass scale.☆49Updated 4 years ago
- Host Header Injection Checker☆83Updated 3 years ago
- Dump all available paths and/or endpoints on WADL file.☆97Updated last month
- Framework to automate Bug Bounty Reconnaissance☆43Updated 5 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆45Updated 4 years ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆59Updated 3 years ago
- My recon script☆50Updated 6 years ago
- sub domain wild card filtering tool☆40Updated 5 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Updated 4 years ago
- Basically a regexp over a GitHub search.☆69Updated 2 years ago
- This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files to…☆49Updated 3 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆92Updated last year
- Shodan Favicon Hash Generator By Aziz Hakim @eternyle☆26Updated last year
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 4 years ago
- Simple fork from degoogle original project with bug hunting purposes☆91Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 4 years ago
- Automate the process of an S3 bucket subdomain takeover via dangling CNAME record☆26Updated last year
- A Payload Injector for bugbounties written in go☆70Updated 5 years ago
- A collection of scripts for bug-bounty related stuff☆39Updated 5 years ago
- A simple tool which makes creating nuclei templates even easier.☆36Updated last year
- Tool to automate recon☆42Updated 4 years ago
- Recon Custom WordList Ganerator☆58Updated 5 years ago
- A list of Awesome Bughunting oneliners , collected from the various sources☆69Updated 2 years ago
- sonarbyte is a simple and fast subdomain scanner written in go to extract subdomain from Rapid7's DNS Database using omnisint's api.☆27Updated 3 years ago
- Subdomain Takeover tool with web UI☆57Updated 2 years ago
- 0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover☆57Updated 5 years ago
- Converts a hostname (or URI) to IP address using your local resolver☆26Updated last year
- Some of my bug bounty tools☆52Updated 6 years ago