eth0izzle / shhgit
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
☆3,896Updated 2 months ago
Alternatives and similar repositories for shhgit:
Users that are interested in shhgit are comparing it to the libraries listed below
- A Workflow Engine for Offensive Security☆5,580Updated 2 weeks ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…☆2,090Updated 9 months ago
- Reconnaissance tool for GitHub organizations☆6,023Updated 2 years ago
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,179Updated 11 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,147Updated 3 months ago
- A pretty sweet vulnerability scanner☆4,123Updated 7 months ago
- A Tool for Domain Flyovers☆5,758Updated 2 years ago
- Knock Subdomain Scan☆3,985Updated 5 months ago
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.☆1,502Updated last year
- A collection of custom security tools for quick needs.☆3,200Updated 2 years ago
- HTTP parameter discovery suite.☆5,612Updated 2 months ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,755Updated last week
- Fast passive subdomain enumeration tool.☆11,618Updated last week
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,213Updated 7 months ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,455Updated 3 weeks ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,700Updated 4 months ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,684Updated last month
- A curated list of amazingly awesome Burp Extensions☆3,166Updated 2 months ago
- In-depth attack surface mapping and asset discovery☆12,957Updated this week
- File upload vulnerability scanner and exploitation tool.☆3,198Updated this week
- Awesome XSS stuff☆4,910Updated 6 months ago
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,228Updated 3 weeks ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,284Updated 6 months ago
- Recon tool leveraging GitHub Code Search API. Scans for exposed API keys across all of GitHub, not just known repos and orgs.☆1,292Updated 2 weeks ago
- Find secrets with Gitleaks 🔑☆19,743Updated last week
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,331Updated 3 months ago
- A python script that finds endpoints in JavaScript files☆3,934Updated last year
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.☆2,378Updated 9 months ago
- A collection of all the data i could extract from 1 billion leaked credentials from internet.☆3,129Updated 4 years ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,639Updated 6 months ago