cybercdh / bucket-finderView external linksLinks
Reads in a list of domains or subdomains and crawls them for references to S3 buckets
☆10Nov 21, 2023Updated 2 years ago
Alternatives and similar repositories for bucket-finder
Users that are interested in bucket-finder are comparing it to the libraries listed below
Sorting:
- List of Fresh DNS resolvers updates every 1 hour☆17Updated this week
- Dump paths & pages from Next.js Manifest☆15Mar 19, 2024Updated last year
- take a list of resolved subdomains and output any corresponding CNAMES en masse.☆18Jan 29, 2026Updated 2 weeks ago
- Automated Recon Tool Installer☆15Jun 29, 2022Updated 3 years ago
- A utility for recursively traversing SSL/TLS certificates for collecting DNS names☆48Aug 26, 2023Updated 2 years ago
- Python script to check if there is any differences in responses of an application when the request comes from a search engine's crawler.☆24Oct 1, 2023Updated 2 years ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆24Feb 11, 2025Updated last year
- PoC for leaking text nodes via CSS injection☆25Jul 27, 2024Updated last year
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆57Nov 24, 2024Updated last year
- BurpSuite extension to convert requests into bcheck scripts☆33Jul 18, 2023Updated 2 years ago
- FourOhMe is a tool for testing HTTP headers on a website in order to try to bypass 40* HTTP codes. Written in Go, so easy to install and …☆24Feb 5, 2024Updated 2 years ago
- collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.☆33Aug 28, 2024Updated last year
- My own Custom nuclei templates☆26Dec 8, 2021Updated 4 years ago
- Xssor.go is a xss reflections checker for urls☆71Mar 22, 2023Updated 2 years ago
- Identify virtual hosts by similarity comparison☆137Aug 12, 2024Updated last year
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆40May 5, 2024Updated last year
- A better way of querying certificate transparency logs☆89Mar 30, 2025Updated 10 months ago
- Proof of Concept Code for CVE-2023-32353: Local privilege escalation via iTunes in Windows☆34Jun 9, 2023Updated 2 years ago
- Basic implementation of certstream to print new subdomains and domains☆36Jul 6, 2021Updated 4 years ago
- Exploits Unauth Docker API☆43Apr 18, 2025Updated 9 months ago
- ☆11Dec 5, 2020Updated 5 years ago
- A Sublime Text plugin that allows for Nmap syntax highlighting☆13Sep 14, 2024Updated last year
- This tool is a simple ffuf launcher which lets you select dynamically which wordlist and which extentions you want to fuzz.☆10Sep 10, 2025Updated 5 months ago
- Tool to check the CloudTrail configuration and the services where trails are sent, to detect potential attacks to CloudTrail logging.☆13May 25, 2024Updated last year
- It's an open source restaurant and coffee shop management system.☆10Jan 6, 2023Updated 3 years ago
- string/file/shellcode encryptor using AES/XOR☆11Oct 15, 2023Updated 2 years ago
- Script to output Azure IAM permissions and flag any explicit/owner permissions for review☆10May 18, 2020Updated 5 years ago
- ☆15Mar 3, 2021Updated 4 years ago
- Provides a Learning Tools Interoperability (LTI) integration for creating WordPress blogs with appropriate user roles based on roles set …☆12Mar 17, 2025Updated 10 months ago
- A scanner for DKIM selectors.☆12Nov 5, 2018Updated 7 years ago
- ☆35Aug 2, 2022Updated 3 years ago
- This Burp extension extracts various data (path, parameter keys, parameter values, subdomains, etc.) from the sitemap. This data is used …☆43Sep 9, 2021Updated 4 years ago
- A repository of the 10 million live most popular websites☆44Dec 21, 2022Updated 3 years ago
- **A powerful, offline, single-file HTML tool designed for developers and security researchers to inspect and analyze JavaScript Source Ma…☆90Oct 24, 2025Updated 3 months ago
- Extract most frequent words in a list of subdomains☆12Feb 15, 2025Updated last year
- A collection of tools for firebase realtime db vulnerability discovery☆12May 22, 2023Updated 2 years ago
- The offical exploit for Pandora v7.0NG Post-auth Remote Code Execution CVE-2019-20224☆14Jan 10, 2020Updated 6 years ago
- Automatic SQL injection and database takeover tool☆45Nov 27, 2025Updated 2 months ago
- Blind XSS SVG☆10Mar 27, 2023Updated 2 years ago