anshumanbh / git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools
☆1,134Updated 5 years ago
Alternatives and similar repositories for git-all-secrets:
Users that are interested in git-all-secrets are comparing it to the libraries listed below
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,743Updated this week
- The XSS Hunter service - a portable version of XSSHunter.com☆1,520Updated 2 years ago
- Subdomain Takeover tool written in Go☆1,960Updated last year
- Security Tool to Look For Interesting Files in S3 Buckets☆1,406Updated last year
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,400Updated 3 months ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆644Updated last year
- Setup script for Regon-ng☆929Updated 4 years ago
- Multi Tool Subdomain Enumeration☆726Updated 4 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆633Updated 6 years ago
- Tool to search secrets in various filetypes.☆1,008Updated 2 years ago
- A Powerful Subdomain Takeover Tool☆948Updated last year
- A tool to link a domain with registered organisation names and emails, to other domains.☆841Updated 11 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,229Updated last year
- Recon tool leveraging GitHub Code Search API. Scans for exposed API keys across all of GitHub, not just known repos and orgs.☆1,284Updated this week
- Vulnerability scanner based on vulners.com search API☆853Updated last year
- A default credential scanner.☆1,478Updated 3 years ago
- Exploits written by the Rhino Security Labs team☆1,074Updated 4 years ago
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.☆1,495Updated last year
- ☆809Updated last year
- Find interesting Amazon S3 Buckets by watching certificate transparency logs.☆1,773Updated last month
- ☆983Updated 2 weeks ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆654Updated 4 years ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆543Updated 7 years ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…☆481Updated 6 years ago
- A collection of AWS penetration testing junk☆1,191Updated last year
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,856Updated 2 weeks ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,004Updated 4 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆757Updated 4 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,721Updated 11 months ago
- Content discovery wordlists generated using BigQuery☆567Updated 4 years ago