SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
β2,423May 26, 2024Updated last year
Alternatives and similar repositories for SecretFinder
Users that are interested in SecretFinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A python script that finds endpoints in JavaScript filesβ4,324Apr 13, 2024Updated 2 years ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,885Apr 5, 2024Updated 2 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,048Mar 7, 2026Updated last month
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,879Mar 20, 2026Updated 3 weeks ago
- Automation for javascript recon in bug bounty.β1,079Sep 9, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,417Sep 13, 2024Updated last year
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,929Updated this week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,153Aug 14, 2024Updated last year
- Fetches javascript file from a list of URLS or subdomains.β839Jul 22, 2025Updated 8 months ago
- A tool to fastly get all javascript sources/filesβ864Jul 4, 2025Updated 9 months ago
- declutters url lists for crawling/pentestingβ1,544Feb 23, 2025Updated last year
- HTTP parameter discovery suite.β6,184Feb 20, 2025Updated last year
- Fetch all the URLs that the Wayback Machine knows about for a domainβ4,383May 1, 2024Updated last year
- Gospider - Fast web spider written in Goβ2,906Apr 21, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A wrapper around grep, to help you grep for thingsβ2,093Jun 8, 2024Updated last year
- Rockyou for web fuzzingβ3,113Mar 11, 2026Updated last month
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,031Dec 21, 2024Updated last year
- Hidden parameters discovery suiteβ2,044Sep 8, 2024Updated last year
- Pull out bits of URLs provided on stdinβ1,307Aug 12, 2023Updated 2 years ago
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.β2,505Aug 3, 2024Updated last year
- A tool to check a bunch of URLs that contain reflecting params.β598Aug 4, 2024Updated last year
- Quick SQLMap Tamper Suggesterβ1,400Jul 18, 2022Updated 3 years ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!β2,588Mar 8, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,416Mar 25, 2026Updated 2 weeks ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,067Jan 2, 2024Updated 2 years ago
- A collection of hacks and one-off scriptsβ2,453Mar 13, 2025Updated last year
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,508Jan 8, 2026Updated 3 months ago
- Contextual Content Discovery Toolβ3,139Apr 29, 2024Updated last year
- A collection of tools to perform searches on GitHub.β1,481Feb 9, 2023Updated 3 years ago
- Subdomain takeover vulnerability checkerβ1,534Sep 10, 2024Updated last year
- Accept URLs on stdin, replace all query string values with a user-supplied valueβ871Nov 23, 2022Updated 3 years ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)β1,583Jun 6, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Automatic SSRF fuzzer and exploitation toolβ3,523Sep 4, 2025Updated 7 months ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,869Apr 6, 2026Updated last week
- DNS Takeover tool written in Goβ2,044Mar 16, 2026Updated 3 weeks ago
- A tool for adding new lines to files, skipping duplicatesβ1,622Jan 12, 2024Updated 2 years ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β1,058Jan 3, 2025Updated last year
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.β9,784Apr 6, 2026Updated last week
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokensβ¦β5,301Mar 13, 2026Updated last month