eth0izzle / shhgit
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
☆3,857Updated last year
Alternatives and similar repositories for shhgit:
Users that are interested in shhgit are comparing it to the libraries listed below
- Reconnaissance tool for GitHub organizations☆5,972Updated 2 years ago
- A Workflow Engine for Offensive Security☆5,430Updated 7 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆4,964Updated last week
- A Tool for Domain Flyovers☆5,694Updated 2 years ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…☆2,051Updated 5 months ago
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,132Updated last month
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,094Updated 3 months ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,567Updated 3 weeks ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,642Updated this week
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,376Updated 11 months ago
- A collection of custom security tools for quick needs.☆3,164Updated last year
- A pretty sweet vulnerability scanner☆4,098Updated 3 months ago
- Find leaked secrets via github search☆2,861Updated last year
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.☆1,475Updated 10 months ago
- File upload vulnerability scanner and exploitation tool.☆3,154Updated last year
- In-depth attack surface mapping and asset discovery☆12,322Updated 3 weeks ago
- Find, verify, and analyze leaked credentials☆17,798Updated this week
- A collection of all the data i could extract from 1 billion leaked credentials from internet.☆3,085Updated 4 years ago
- Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.☆1,235Updated last week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆5,232Updated 5 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,106Updated 2 months ago
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,121Updated 7 months ago
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.☆2,332Updated 5 months ago
- HTTP parameter discovery suite.☆5,376Updated last month
- A python script that finds endpoints in JavaScript files☆3,789Updated 9 months ago
- An HTTP toolkit for security research.☆6,174Updated this week
- A repository with 3 tools for pwn'ing websites with .git repositories available☆3,902Updated last year
- Attack Surface Management Platform☆8,313Updated 2 weeks ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,546Updated 5 months ago
- Reverse proxies cheatsheet☆1,791Updated last year