dxa4481 / truffleHogRegexesLinks
These are the regexes that power truffleHog
☆218Updated 2 years ago
Alternatives and similar repositories for truffleHogRegexes
Users that are interested in truffleHogRegexes are comparing it to the libraries listed below
Sorting:
- ☆276Updated 3 years ago
- Benchmarking repo for secrets scanning☆232Updated 10 months ago
- Find AWS S3 buckets and test their permissions.☆390Updated 2 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆177Updated 2 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆347Updated 4 years ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆216Updated 5 years ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆522Updated 3 years ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆191Updated 4 years ago
- ☆251Updated last year
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆251Updated last month
- A highly configurable Framework for easy automated web scanning☆376Updated 4 years ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆172Updated 6 years ago
- A tool for identifying misconfigured CloudFront domains☆358Updated 5 years ago
- AWS S3 Bucket/Object Finder☆120Updated 3 years ago
- Brute force AWS bucket finder☆61Updated 2 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆134Updated last year
- ☆173Updated 2 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆563Updated 2 years ago
- Bugbounty scope tool☆330Updated 4 months ago
- Uncover forgotten secrets and bring them back to life, haunting security and operations teams.☆207Updated 2 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆211Updated 5 years ago
- Amazon bucket brute force tool☆102Updated 12 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆209Updated 8 months ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆152Updated 2 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆251Updated 3 years ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆526Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆103Updated last year
- rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments☆247Updated 5 years ago
- Simple shell script for automated domain recognition with some tools☆301Updated 4 years ago
- Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions☆222Updated 3 years ago