daffainfo / Git-SecretLinks
Go scripts for finding sensitive data like API key / some keywords in the github repository
☆157Updated 3 years ago
Alternatives and similar repositories for Git-Secret
Users that are interested in Git-Secret are comparing it to the libraries listed below
Sorting:
- a Go code to detect leaks in JS files via regex patterns☆150Updated 4 years ago
- Go scripts for checking API key / access token validity☆220Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆82Updated 3 years ago
- ☆175Updated 3 months ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆125Updated 7 months ago
- Full Nuclei automation script with logic explanation.☆246Updated 3 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 4 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆297Updated last year
- ☆160Updated 4 years ago
- Prototype pollution scanner using headless chrome☆219Updated 3 years ago
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆132Updated 3 years ago
- Automated Web Recon Shell Scripts☆53Updated 4 years ago
- The scripts I write to help me on my bug bounty hunting☆123Updated 4 years ago
- R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.☆152Updated 4 years ago
- Turns any junk text into a usable wordlist for brute-forcing.☆227Updated last year
- A reverse whois tool based on Whoxy API.☆169Updated last year
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆185Updated 5 years ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆78Updated 5 years ago
- 🔭 Collection of regexp pattern for security passive scanning☆116Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search…☆114Updated 4 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- HTTP parameter discovery suite.☆65Updated 5 years ago
- Simple fork from degoogle original project with bug hunting purposes☆91Updated 3 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Updated 4 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 5 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆190Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆109Updated 3 years ago
- Advanced Reconnaissance and Web Application Discovery☆89Updated 4 years ago
- Burp Bounty profiles compilation, feel free to contribute!☆148Updated 4 years ago