dxa4481 / truffleHogRegexes
These are the regexes that power truffleHog
β218Updated 2 years ago
Alternatives and similar repositories for truffleHogRegexes:
Users that are interested in truffleHogRegexes are comparing it to the libraries listed below
- β275Updated 3 years ago
- Find cloud assets that no one wants exposed π βοΈβ344Updated 4 years ago
- β248Updated 10 months ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.β517Updated last year
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server forβ¦β191Updated 4 years ago
- secretz, minimizing the large attack surface of Travis CIβ326Updated 2 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures tβ¦β211Updated 5 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.β174Updated 2 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)β453Updated 5 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.β247Updated 3 weeks ago
- A tool for identifying misconfigured CloudFront domainsβ354Updated 4 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.β559Updated 2 years ago
- AWS S3 Bucket/Object Finderβ119Updated 3 years ago
- A script that can resolve an input file of domains and scan them with masscanβ157Updated 4 years ago
- Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictionsβ221Updated 3 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parametersβ103Updated last year
- Amazon bucket brute force toolβ99Updated 11 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censysβ152Updated 2 years ago
- Bugbounty scope toolβ328Updated 2 months ago
- A highly configurable Framework for easy automated web scanningβ373Updated 4 years ago
- Find AWS S3 buckets and test their permissions.β385Updated 2 years ago
- Correlated injection proxy tool for XSS Hunterβ254Updated 2 years ago
- Uncover forgotten secrets and bring them back to life, haunting security and operations teams.β207Updated 2 years ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingβ¦β205Updated last year
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.β396Updated 5 years ago
- a .js scanner, built in php. designed to scrape urls and other infoβ215Updated 7 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.β531Updated 6 years ago
- An open source intelligence tool to crawl the graph of certificate Alternate Namesβ350Updated last year
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cerβ¦β287Updated 3 months ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yoβ¦β215Updated 5 years ago