eth0izzle / shhgit
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
☆3,896Updated 2 months ago
Alternatives and similar repositories for shhgit:
Users that are interested in shhgit are comparing it to the libraries listed below
- Reconnaissance tool for GitHub organizations☆6,023Updated 2 years ago
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.☆1,502Updated last year
- A pretty sweet vulnerability scanner☆4,123Updated 7 months ago
- A Workflow Engine for Offensive Security☆5,580Updated 2 weeks ago
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,179Updated 11 months ago
- XRay is a tool for recon, mapping and OSINT gathering from public networks.☆2,255Updated 9 months ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,450Updated 2 weeks ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,755Updated this week
- A collection of custom security tools for quick needs.☆3,199Updated 2 years ago
- A Tool for Domain Flyovers☆5,755Updated 2 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,211Updated 7 months ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,700Updated 4 months ago
- Knock Subdomain Scan☆3,985Updated 5 months ago
- Infection Monkey - An open-source adversary emulation platform☆6,792Updated last week
- HTTP parameter discovery suite.☆5,612Updated 2 months ago
- Tool to scan for secret files on HTTP servers☆2,087Updated 3 weeks ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,147Updated 3 months ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…☆2,090Updated 9 months ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,678Updated last month
- This challenge is Inon Shkedy's 31 days API Security Tips.☆2,120Updated 3 years ago
- File upload vulnerability scanner and exploitation tool.☆3,196Updated 2 years ago
- Fast passive subdomain enumeration tool.☆11,618Updated this week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆5,477Updated 8 months ago
- A collection of all the data i could extract from 1 billion leaked credentials from internet.☆3,131Updated 4 years ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,793Updated last week
- A python script that finds endpoints in JavaScript files☆3,934Updated last year
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,225Updated 3 weeks ago
- An HTTP toolkit for security research.☆6,887Updated 3 months ago
- Find leaked secrets via github search☆2,940Updated 3 months ago
- Analyze the security of any domain by finding all the information possible. Made in python.☆1,856Updated 2 years ago