m14r41 / scan4secretsLinks
SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source code scanner and for URL that detects hardcoded secrets like API keys, credentials, and sensitive information across files and folders.
☆98Updated 2 months ago
Alternatives and similar repositories for scan4secrets
Users that are interested in scan4secrets are comparing it to the libraries listed below
Sorting:
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆105Updated last month
- ☆94Updated 2 months ago
- A passive way to find backups/ sensitive information.☆82Updated last month
- MailSecOps is an email and mail gateway security testing tool. With this script, you can perform mail spoofing, relay tests and security …☆55Updated 7 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆61Updated 2 weeks ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆91Updated 10 months ago
- A collection of config files for linux focusing on hackthebox theme☆45Updated 6 months ago
- AI/LLM local model integration for analysis of reconftw results☆61Updated last month
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆139Updated last month
- A Powerful Recon Engine☆65Updated 7 months ago
- Xploitra is a powerful reverse shell payload generator for educational and security testing. It offers customizable payloads with advance…☆63Updated 8 months ago
- ☆46Updated 3 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆71Updated 4 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆113Updated 8 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆117Updated 6 months ago
- ☆75Updated 2 months ago
- reverse engineered and improved BSQLi script from Coffinxp☆12Updated 9 months ago
- ☆119Updated last year
- ☆65Updated 4 months ago
- 🔍 LFIer is a powerful and efficient tool for detecting Local File Inclusion (LFI) vulnerabilities in web applications.☆53Updated 6 months ago
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆150Updated 6 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆134Updated 6 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Updated 7 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆98Updated 9 months ago
- An advanced JWT extraction & decoding tool for bug bounty hunters! 🏴☠️☆41Updated 3 months ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆36Updated 4 months ago
- I-Espresso is a tool that enables users to generate Portable Executable (PE) files from batch scripts. Leveraging IExpress, it demonstrat…☆77Updated 8 months ago
- Search for all leaked keys/secrets using one regex! bugbounty☆130Updated 2 months ago
- LDAP Enumeration Tool for Pentesters☆47Updated 2 months ago
- A cheatsheet of tools and commands that I use to pentest Active Directory.☆50Updated 3 years ago