πͺ Leak git repositories from misconfigured websites
β1,597Dec 5, 2025Updated 2 months ago
Alternatives and similar repositories for gitjacker
Users that are interested in gitjacker are comparing it to the libraries listed below
Sorting:
- a recon tool that allows searching on URLs that are exposed via shortener servicesβ1,664Jan 23, 2025Updated last year
- Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sockβ7,111Mar 12, 2024Updated last year
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.β3,945Feb 28, 2025Updated last year
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.β2,489Aug 3, 2024Updated last year
- A repository with 3 tools for pwn'ing websites with .git repositories availableβ4,128Jun 14, 2023Updated 2 years ago
- The Swiss Army knife for automated Web Application Testingβ2,322May 8, 2024Updated last year
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,000Dec 21, 2024Updated last year
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,350Sep 30, 2024Updated last year
- π΅οΈββοΈ Offensive Google framework.β18,465Feb 5, 2026Updated 3 weeks ago
- An HTTP toolkit for security research.β9,323Feb 5, 2025Updated last year
- A Modern Orchestration Engine for Securityβ6,109Feb 19, 2026Updated last week
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Eβ¦β8,479Nov 16, 2025Updated 3 months ago
- Awesome cloud enumeratorβ1,100Mar 9, 2025Updated 11 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,082Aug 14, 2024Updated last year
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Gβ¦β2,245Jun 10, 2025Updated 8 months ago
- A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.β2,986Feb 23, 2026Updated last week
- A post exploitation framework designed to operate covertly on heavily monitored environmentsβ2,167Sep 29, 2021Updated 4 years ago
- Automation for internal Windows Penetrationtest / AD-Securityβ3,644Aug 28, 2025Updated 6 months ago
- Scanning APK file for URIs, endpoints & secrets.β5,974Aug 20, 2025Updated 6 months ago
- Subdomain Takeover tool written in Goβ2,028Aug 13, 2023Updated 2 years ago
- βοΈ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-huntingβ4,525Feb 15, 2026Updated 2 weeks ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,593Feb 23, 2026Updated last week
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.β1,547Mar 7, 2024Updated last year
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,851Feb 24, 2026Updated last week
- User enumeration with Microsoft Teams APIβ175Jul 9, 2021Updated 4 years ago
- Notes about attacking Jenkins serversβ2,090Jul 10, 2024Updated last year
- A collection of custom security tools for quick needs.β3,284May 1, 2023Updated 2 years ago
- PoC for Zerologon - all research credits go to Tom Tervoort of Securaβ1,278Nov 3, 2020Updated 5 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,010Jun 24, 2024Updated last year
- wsb-detect enables you to detect if you are running in Windows Sandbox ("WSB")β373Feb 27, 2023Updated 3 years ago
- π Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTsβ590Dec 5, 2025Updated 2 months ago
- Hidden parameters discovery suiteβ2,027Sep 8, 2024Updated last year
- Burpsuite Extension to bypass 403 restricted directoryβ1,669Jun 29, 2023Updated 2 years ago
- Enumerate information from NTLM authentication enabled web endpoints πβ504Sep 23, 2025Updated 5 months ago
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokensβ¦β5,223Jan 31, 2026Updated last month
- Collection of methodology and test case for various web vulnerabilities.β7,034Jun 25, 2025Updated 8 months ago
- Extract credentials from lsass remotelyβ2,180Dec 24, 2025Updated 2 months ago
- Reverse proxies cheatsheetβ1,855Nov 4, 2023Updated 2 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,837Jan 1, 2025Updated last year