jordanpotti / AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
☆1,354Updated 5 months ago
Related projects: ⓘ
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,507Updated this week
- Exploits written by the Rhino Security Labs team☆1,053Updated 3 years ago
- WeirdAAL (AWS Attack Library)☆773Updated last year
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,103Updated 5 years ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,299Updated 4 months ago
- A collection of AWS penetration testing junk☆1,162Updated last year
- A default credential scanner.☆1,429Updated 2 years ago
- Setup script for Regon-ng☆915Updated 3 years ago
- Subdomain Takeover tool written in Go☆1,892Updated last year
- Find interesting Amazon S3 Buckets by watching certificate transparency logs.☆1,744Updated last year
- DNS Enumeration Script☆2,592Updated this week
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,101Updated last year
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.☆1,430Updated 6 months ago
- Enumerate the permissions associated with AWS credential set☆1,073Updated 7 months ago
- Tool to search secrets in various filetypes.☆974Updated last year
- Discover Your Attack Surface!☆1,350Updated last year
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,628Updated 2 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,188Updated 9 months ago
- Notes about attacking Jenkins servers☆1,949Updated 2 months ago
- SimplE RePort wrIting and COllaboration tool☆1,092Updated 4 years ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,472Updated last year
- ☆1,759Updated this week
- A tool to link a domain with registered organisation names and emails, to other domains.☆826Updated 4 months ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,661Updated 2 years ago
- An OSINT tool that discovers sub-domains by searching Certificate Transparency logs☆465Updated 2 years ago
- A Powerful Subdomain Takeover Tool☆919Updated 11 months ago
- A mostly-serverless distributed hash cracking platform☆792Updated 5 months ago
- A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.☆892Updated 5 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆4,905Updated last month
- A curated list of amazingly awesome Burp Extensions☆2,943Updated 2 months ago