intigriti / misconfig-mapper
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
☆689Updated last week
Alternatives and similar repositories for misconfig-mapper:
Users that are interested in misconfig-mapper are comparing it to the libraries listed below
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆446Updated 11 months ago
- Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.☆928Updated last week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆607Updated last week
- Pen Test Report Generation and Assessment Collaboration☆475Updated last week
- The Internets #1 Subdomain Takeover Tool☆241Updated 2 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆405Updated 2 months ago
- Header Exploitation HTTP☆478Updated last week
- ☆475Updated 10 months ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆625Updated 9 months ago
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆324Updated last week
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆343Updated 4 months ago
- AI-powered ffuf wrapper☆301Updated 4 months ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆404Updated this week
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty☆542Updated this week
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆398Updated last year
- A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.☆584Updated this week
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆469Updated 3 months ago
- Discover new target domains using Content Security Policy☆398Updated this week
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆332Updated last year
- 💀 Don't fear the Reaper 👻☆476Updated this week
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆626Updated last year
- Orbit Scanning Software☆352Updated 3 weeks ago
- CT Log Scanner☆321Updated last month
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆234Updated last year
- ☆642Updated 3 weeks ago
- A streamlined tool for discovering private TLDs for security research.☆180Updated this week
- Fast and customizable subdomain wordlist generator using DSL☆779Updated last week
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆209Updated 7 months ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆285Updated last year
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.☆214Updated 6 months ago