firefart / hijaggerLinks
Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration
☆296Updated this week
Alternatives and similar repositories for hijagger
Users that are interested in hijagger are comparing it to the libraries listed below
Sorting:
- boostsecurityio/lotp☆126Updated last month
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆118Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆218Updated last month
- Private key usage verification☆430Updated 2 months ago
- ☆111Updated last year
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆271Updated 8 months ago
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆363Updated this week
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆156Updated 9 months ago
- How GitHub Actions workflows can be hacked☆153Updated 9 months ago
- Tools to assess DNS security.☆152Updated last year
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆169Updated 4 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆133Updated 2 months ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆647Updated last month
- An open source intelligence tool to crawl the graph of certificate Alternate Names☆352Updated last year
- CQ, a code security scanner☆100Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 2 months ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆190Updated 6 months ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆345Updated 4 years ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆280Updated 3 months ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆249Updated 3 weeks ago
- ☆390Updated 3 years ago
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆210Updated last month
- a smart DNS response-guided subdomain fuzzer☆151Updated 2 years ago
- S3 Account Search☆6Updated 7 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆183Updated 2 years ago
- A GraphQL enumeration and extraction tool☆131Updated 2 years ago
- Scan DockerHub images that match a keyword to find secrets.☆59Updated 4 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 4 months ago
- ☆152Updated last year
- Distribute ordinary bash commands over many systems☆166Updated 2 years ago