truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
☆124Aug 20, 2023Updated 2 years ago
Alternatives and similar repositories for truffleproc
Users that are interested in truffleproc are comparing it to the libraries listed below
Sorting:
- An LLM and OCR based Indicator of Compromise Extraction Tool☆38Dec 4, 2024Updated last year
- Signatures for wraith used to detect secrets across various sources☆15Jul 8, 2022Updated 3 years ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Sep 11, 2024Updated last year
- Provides an overview of the inner file structure of a PDF☆24Sep 26, 2022Updated 3 years ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆52Sep 2, 2022Updated 3 years ago
- Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.☆10Apr 3, 2022Updated 3 years ago
- BadRobot - Operator Security Audit Tool☆226Feb 2, 2026Updated last month
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆61Nov 11, 2024Updated last year
- Random scripts for azure stuff☆14Oct 12, 2022Updated 3 years ago
- ☆65Dec 9, 2021Updated 4 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆107Jan 30, 2025Updated last year
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆89Jan 28, 2024Updated 2 years ago
- ☆18Feb 26, 2026Updated 3 weeks ago
- ☆89Feb 11, 2022Updated 4 years ago
- A GraphQL enumeration and extraction tool☆133Jan 29, 2023Updated 3 years ago
- An Evil OIDC Server☆53Oct 19, 2022Updated 3 years ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Sep 7, 2023Updated 2 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆736Mar 5, 2026Updated 2 weeks ago
- CloudFlare Worker Shell☆14Aug 29, 2020Updated 5 years ago
- PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph☆24Aug 2, 2025Updated 7 months ago
- Reference security architecture for AI applications☆14Mar 28, 2025Updated 11 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆47Aug 16, 2024Updated last year
- Test Azure environment for MFA misconfigurations☆12Jan 13, 2023Updated 3 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Mar 4, 2022Updated 4 years ago
- Quick Start/Setup of CI/CD for Offensive/Defensive Purposes☆21Sep 4, 2021Updated 4 years ago
- Linux #rootkit and #malware revealer☆31Aug 1, 2024Updated last year
- An extension to use Semgrep inside Burp Suite.☆88May 23, 2025Updated 9 months ago
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆60Updated this week
- 📧 [Research] E-Mail Injection: Vulnerable applications☆17May 26, 2024Updated last year
- https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege-escalation-glibc-ld-so.txt☆15Oct 5, 2023Updated 2 years ago
- ☆58Updated this week
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆31Sep 24, 2022Updated 3 years ago
- Private key usage verification☆431Apr 4, 2025Updated 11 months ago
- ☆22Aug 3, 2024Updated last year
- WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.☆56Jun 30, 2021Updated 4 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Jan 12, 2024Updated 2 years ago
- Production-ready detection & response queries for osquery☆601Aug 13, 2025Updated 7 months ago