americanexpress / earlybirdLinks
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
☆749Updated last week
Alternatives and similar repositories for earlybird
Users that are interested in earlybird are comparing it to the libraries listed below
Sorting:
- Private key usage verification☆432Updated 8 months ago
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆537Updated 5 months ago
- all paths lead to clouds☆638Updated 2 years ago
- Slack enumeration and exposed secrets detection tool☆392Updated 4 months ago
- Telling tales on you for leaking secrets!☆233Updated last week
- A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.☆108Updated 6 months ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆530Updated 7 months ago
- Fast HTTP enumerator☆494Updated 7 months ago
- Yar is a tool for plunderin' organizations, users and/or repositories.☆240Updated 4 years ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆715Updated 2 years ago
- Uncover forgotten secrets and bring them back to life, haunting security and operations teams.☆209Updated 2 years ago
- Get (security) info about IP addresses☆241Updated last month
- An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …☆404Updated 10 months ago
- Go rules for semgrep and go-ruleguard☆481Updated last year
- Scan your code for security misconfiguration, search for passwords and secrets.☆652Updated 2 years ago
- A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)☆467Updated last year
- Semgrep queries developed by Trail of Bits.☆452Updated 3 weeks ago
- A CLI-based HTTP intercept and replay proxy☆266Updated 2 months ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆350Updated 5 years ago
- OWASP Domain Protect - prevent subdomain takeover☆399Updated 11 months ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆302Updated this week
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆278Updated last year
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆988Updated last week
- A checklist of practices for organizations dealing with account takeover (ATO)☆276Updated last year
- Documenting your Threat Models with HCL☆438Updated 2 weeks ago
- Searches through git repositories for high entropy strings and secrets, digging deep into commit history☆511Updated last month
- A tool to check for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index☆603Updated 2 months ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆260Updated 4 months ago
- A container analysis and exploitation tool for pentesters and engineers.☆674Updated 2 years ago
- Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace☆772Updated 10 months ago