johnsaigle / scary-stringsLinks
If these strings are in your code, you might have a problem!
☆53Updated last month
Alternatives and similar repositories for scary-strings
Users that are interested in scary-strings are comparing it to the libraries listed below
Sorting:
- Nuclei plugins to audit Chrome extensions☆65Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Updated 8 months ago
- Burp Suite extension for testing Passkey systems.☆74Updated 6 months ago
- Identify hardcoded secrets in static structured text (version 2)☆93Updated 8 months ago
- Additional active scan checks for BURP☆28Updated last year
- A tech enumeration toolkit focused on 404 Not found pages.☆25Updated last year
- FrogPost: postMessage Security Testing Tool☆96Updated last week
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…☆93Updated 2 years ago
- Damn Vulnerable Browser Extension (DVBE), previously named as Badly Coded Browser Extension (BCBE), is an open-source vulnerable Chrome E…☆31Updated 7 months ago
- TruffleHog Explorer, a user-friendly web-based tool to visualize and analyze data extracted using TruffleHog.☆46Updated 8 months ago
- Hijack a slack bot to phish your way in☆57Updated 2 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated 2 years ago
- Unicode Security Toolkit☆38Updated 11 months ago
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.☆26Updated 11 months ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Updated last year
- Advanced test for proxy & waf☆13Updated 3 weeks ago
- A python3 script searching for secret on swaggerhub☆68Updated 3 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 3 years ago
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆62Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆40Updated 3 years ago
- Looks for parameters in urls☆34Updated 11 months ago
- aws cli pentesting/red team snippets☆32Updated last year
- Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io☆83Updated last year
- Handy scripts and one-liners to make life easier☆37Updated 2 years ago
- Crawlector is a threat hunting framework designed for scanning websites for malicious objects.☆125Updated last year
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆149Updated last month
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated 2 years ago
- ☆90Updated 3 years ago
- Ffuf output browser☆39Updated 2 years ago