daffainfo / Git-SecretLinks
Go scripts for finding sensitive data like API key / some keywords in the github repository
☆161Updated 3 years ago
Alternatives and similar repositories for Git-Secret
Users that are interested in Git-Secret are comparing it to the libraries listed below
Sorting:
- Detects request smuggling via HTTP/2 downgrades.☆92Updated 2 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- Turns any junk text into a usable wordlist for brute-forcing.☆221Updated last year
- ☆170Updated 3 years ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆124Updated 2 months ago
- Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…☆198Updated 3 weeks ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Find endpoints on GitHub.☆198Updated 2 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆182Updated 2 years ago
- Prototype pollution scanner using headless chrome☆218Updated 2 years ago
- Useful "Match and Replace" burpsuite rules☆348Updated last year
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆129Updated 3 years ago
- Go scripts for checking API key / access token validity☆216Updated 3 years ago
- 🔭 Collection of regexp pattern for security passive scanning☆114Updated 2 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆275Updated last year
- a Go code to detect leaks in JS files via regex patterns☆144Updated 3 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- Talosplus is a fast and robust template based Intelligent automation framework primarily developed for Bug Bounty Automation☆87Updated 2 years ago
- mx-takeover focuses DNS MX records and detects misconfigured MX records.☆347Updated last year
- Automated Web Recon Shell Scripts☆51Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆178Updated 4 years ago
- A Fast Broken Link Hijacker Tool written in Python☆101Updated last year
- Customisable and automated HTTP header injection☆253Updated 11 months ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Updated 9 months ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆105Updated 3 years ago
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…☆100Updated 3 years ago