lanrat / certgraph
An open source intelligence tool to crawl the graph of certificate Alternate Names
☆350Updated last year
Alternatives and similar repositories for certgraph:
Users that are interested in certgraph are comparing it to the libraries listed below
- These are the regexes that power truffleHog☆218Updated 2 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆247Updated 3 weeks ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆559Updated 2 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆344Updated 4 years ago
- a tool to enumerate the resource records of a DNS zone using its DNSSEC NSEC or NSEC3 chain☆198Updated 2 years ago
- hardCIDR is a Linux Bash script, but also functions under macOS. Your mileage may vary on other distros. The script with no specified opt…☆370Updated 3 years ago
- ☆248Updated 10 months ago
- Attack Surface Management since before Attack Surface Management was a thing☆642Updated last week
- Yar is a tool for plunderin' organizations, users and/or repositories.☆238Updated 4 years ago
- A rapid API for the Project Sonar dataset☆649Updated 2 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆210Updated 4 years ago
- (Unofficial) Python API for https://crt.sh☆142Updated 4 years ago
- Application and Service Fingerprinting☆133Updated 2 years ago
- Private key usage verification☆431Updated last month
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆364Updated 2 years ago
- Python library for connecting to CertStream☆444Updated 9 months ago
- A highly configurable Framework for easy automated web scanning☆373Updated 4 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆396Updated 5 years ago
- Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules☆189Updated 3 years ago
- AWS S3 Bucket/Object Finder☆119Updated 3 years ago
- A tool to hunt for credentials in github wild AKA git*hunt☆294Updated 2 years ago
- An OSINT tool that discovers sub-domains by searching Certificate Transparency logs☆470Updated 2 years ago
- ☆275Updated 3 years ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆215Updated 5 years ago
- scavenger : is a multi-threaded post-exploitation scanning tool for scavenging systems, finding most frequently used files and folders a…☆336Updated 6 years ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆517Updated last year
- nnposter's alternate fingerprint dataset for Nmap script http-default-accounts☆249Updated last month
- Weaponizing Live CT logs for automated monitoring of assets☆133Updated 3 years ago
- Monitors Github for leaked secrets☆198Updated 6 months ago
- Collection of scripts & fingerprinting tricks for Shodan.io☆253Updated 4 years ago