anshumanbh / git-all-secrets

Related projects ⓘ

Alternatives and complementary repositories for git-all-secrets

• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,911Updated last year
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,573Updated this week
• jordanpotti / AWSBucketDump
  Security Tool to Look For Interesting Files in S3 Buckets
  ☆1,366Updated 7 months ago
• maK- / parameth
  This tool can be used to brute discover GET and POST parameters
  ☆1,344Updated 5 years ago
• bugcrowd / HUNT
  ☆2,183Updated 11 months ago
• intrigueio / intrigue-core
  Discover Your Attack Surface!
  ☆1,362Updated 2 years ago
• tillson / git-hound
  Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.
  ☆1,204Updated last month
• jhaddix / domain
  Setup script for Regon-ng
  ☆923Updated 4 years ago
• dagrz / aws_pwn
  A collection of AWS penetration testing junk
  ☆1,173Updated last year
• securing / DumpsterDiver
  Tool to search secrets in various filetypes.
  ☆977Updated last year
• RhinoSecurityLabs / Security-Research
  Exploits written by the Rhino Security Labs team
  ☆1,059Updated 3 years ago
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆634Updated 5 years ago
• dsopas / assessment-mindset
  Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
  ☆731Updated 2 years ago
• TypeError / domained
  Multi Tool Subdomain Enumeration
  ☆722Updated 3 years ago
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆632Updated 3 years ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,201Updated 11 months ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆532Updated 7 years ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,491Updated last year
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆638Updated last year
• carnal0wnage / weirdAAL
  WeirdAAL (AWS Attack Library)
  ☆781Updated last year
• ztgrace / changeme
  A default credential scanner.
  ☆1,451Updated 2 years ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,333Updated 6 months ago
• eth0izzle / bucket-stream
  Find interesting Amazon S3 Buckets by watching certificate transparency logs.
  ☆1,753Updated last year
• vysecurity / DomLink
  A tool to link a domain with registered organisation names and emails, to other domains.
  ☆829Updated 6 months ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,966Updated 4 months ago
• codingo / Interlace
  Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
  ☆1,213Updated 6 months ago
• BishopFox / GitGot
  Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
  ☆1,455Updated 8 months ago
• nahamsec / JSParser
  ☆788Updated last year
• vmware / burp-rest-api
  REST/JSON API to the Burp Suite security tool.
  ☆547Updated 5 months ago