kulkansecurity / gitxrayLinks
A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.
☆143Updated last month
Alternatives and similar repositories for gitxray
Users that are interested in gitxray are comparing it to the libraries listed below
Sorting:
- Search for sensitive data in Postman public library.☆205Updated 5 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆229Updated 4 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆108Updated 7 months ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆190Updated last week
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆160Updated 6 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆141Updated 5 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty in WebSocket☆77Updated last month
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆123Updated 4 months ago
- Nuclei templates for honeypots detection.☆196Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆162Updated 7 months ago
- Burp Suite extension for testing Passkey systems.☆69Updated 2 months ago
- boostsecurityio/lotp☆126Updated 2 months ago
- hauditor is a tool designed to analyze the security headers returned by a web page.☆173Updated 11 months ago
- A research project to add some brrrrrr to Burp☆178Updated 4 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆119Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆220Updated 2 weeks ago
- A recon tool that uses ML to predict subdomains. Then returns those that resolve.☆93Updated 2 months ago
- Protection against HTML smuggling attacks.☆96Updated 2 weeks ago
- Dredging up secrets from the depths of the file system☆127Updated 7 months ago
- AWS IAM Username Enumerator and Password Spraying Tool in Python3☆83Updated 2 months ago
- AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.☆70Updated last week
- Identify hardcoded secrets in static structured text (version 2)☆91Updated 4 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆105Updated last month
- A Powerful Network Reconnaissance Tool for Security Professionals☆101Updated 5 months ago
- ☆184Updated 2 months ago
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆251Updated last month
- FrogPost: postMessage Security Testing Tool☆80Updated last month
- Putting a leash on naughty AWS permissions☆123Updated 2 months ago
- The perfect butler for pentesters, bug-bounty hunters and security researchers☆91Updated last year
- The Arcanum Prompt Injection Taxonomy☆104Updated last month