daffainfo / Git-SecretLinks
Go scripts for finding sensitive data like API key / some keywords in the github repository
☆161Updated 3 years ago
Alternatives and similar repositories for Git-Secret
Users that are interested in Git-Secret are comparing it to the libraries listed below
Sorting:
- Go scripts for checking API key / access token validity☆216Updated 4 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- a Go code to detect leaks in JS files via regex patterns☆146Updated 3 years ago
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆130Updated 3 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities☆105Updated 4 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- ☆171Updated 3 years ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆125Updated last month
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- Prototype pollution scanner using headless chrome☆220Updated 3 years ago
- Turns any junk text into a usable wordlist for brute-forcing.☆221Updated last year
- Automated Web Recon Shell Scripts☆52Updated 3 years ago
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆178Updated 4 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Updated 11 months ago
- 🔭 Collection of regexp pattern for security passive scanning☆115Updated 2 years ago
- Run all your bug bounty VPN profiles in parallel and expose them via multiple local SOCKS proxies.☆107Updated 3 years ago
- R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.☆154Updated 4 years ago
- A Python based scanner to find potential SSRF parameters in a web application.☆72Updated 4 years ago
- Advanced Reconnaissance and Web Application Discovery☆89Updated 3 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Burp Bounty profiles compilation, feel free to contribute!☆148Updated 3 years ago
- ☆157Updated 3 years ago
- The scripts I write to help me on my bug bounty hunting☆122Updated 3 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Astra is a tool to find URLs and secrets inside a webpage/files☆212Updated 2 years ago
- Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.☆149Updated 2 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆108Updated 3 years ago