g0ldencybersec / EasyEASM
Zero-dollar attack surface management tool
☆268Updated 9 months ago
Alternatives and similar repositories for EasyEASM:
Users that are interested in EasyEASM are comparing it to the libraries listed below
- ☆462Updated 9 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆371Updated 3 months ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆604Updated 7 months ago
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆320Updated 3 months ago
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆411Updated this week
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆396Updated last week
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆56Updated 8 months ago
- ☆316Updated 2 weeks ago
- ☆216Updated 7 months ago
- A RedTeam Toolkit☆391Updated 3 months ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆348Updated this week
- Session Hijacking Visual Exploitation☆196Updated 10 months ago
- Nuclei templates for honeypots detection.☆196Updated last year
- Discover new target domains using Content Security Policy☆391Updated this week
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆240Updated last year
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆312Updated last week
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆619Updated last year
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆309Updated 2 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆573Updated 2 months ago
- Smart context-based SSRF vulnerability scanner.☆348Updated 2 years ago
- ☆519Updated 7 months ago
- A streamlined tool for discovering private TLDs for security research.☆172Updated this week
- Automated learning of regexes for DNS discovery☆362Updated last year
- An open-source self-hosted purple team management web application.☆250Updated last week
- A suite for hunting suspicious targets, expose domains and phishing discovery☆336Updated last week
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.☆203Updated 4 months ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆448Updated 10 months ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆436Updated 2 years ago
- AI-powered ffuf wrapper☆277Updated 2 months ago
- Search for sensitive data in Postman public library.☆194Updated 3 weeks ago