SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
β2,407May 26, 2024Updated last year
Alternatives and similar repositories for SecretFinder
Users that are interested in SecretFinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A python script that finds endpoints in JavaScript filesβ4,309Apr 13, 2024Updated last year
- BBT - Bug Bounty Tools (examplesπ‘)β1,885Apr 5, 2024Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,025Mar 7, 2026Updated 2 weeks ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,853Jan 1, 2025Updated last year
- Automation for javascript recon in bug bounty.β1,069Sep 9, 2023Updated 2 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,409Sep 13, 2024Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,113Aug 14, 2024Updated last year
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,884Updated this week
- A tool to fastly get all javascript sources/filesβ860Jul 4, 2025Updated 8 months ago
- Fetches javascript file from a list of URLS or subdomains.β839Jul 22, 2025Updated 8 months ago
- declutters url lists for crawling/pentestingβ1,538Feb 23, 2025Updated last year
- HTTP parameter discovery suite.β6,142Feb 20, 2025Updated last year
- Fetch all the URLs that the Wayback Machine knows about for a domainβ4,356May 1, 2024Updated last year
- Gospider - Fast web spider written in Goβ2,891Apr 21, 2024Updated last year
- A wrapper around grep, to help you grep for thingsβ2,086Jun 8, 2024Updated last year
- Rockyou for web fuzzingβ3,094Mar 11, 2026Updated last week
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,007Dec 21, 2024Updated last year
- Hidden parameters discovery suiteβ2,033Sep 8, 2024Updated last year
- Pull out bits of URLs provided on stdinβ1,296Aug 12, 2023Updated 2 years ago
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.β2,496Aug 3, 2024Updated last year
- A tool to check a bunch of URLs that contain reflecting params.β597Aug 4, 2024Updated last year
- Quick SQLMap Tamper Suggesterβ1,399Jul 18, 2022Updated 3 years ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!β2,568Mar 8, 2026Updated 2 weeks ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,352Mar 13, 2026Updated last week
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,063Jan 2, 2024Updated 2 years ago
- A collection of hacks and one-off scriptsβ2,425Mar 13, 2025Updated last year
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,503Jan 8, 2026Updated 2 months ago
- Contextual Content Discovery Toolβ3,121Apr 29, 2024Updated last year
- A collection of tools to perform searches on GitHub.β1,471Feb 9, 2023Updated 3 years ago
- Subdomain takeover vulnerability checkerβ1,528Sep 10, 2024Updated last year
- 403/401 Bypass Methods + Bash Automation + Your Support ;)β1,580Jun 6, 2022Updated 3 years ago
- Automatic SSRF fuzzer and exploitation toolβ3,505Sep 4, 2025Updated 6 months ago
- Accept URLs on stdin, replace all query string values with a user-supplied valueβ867Nov 23, 2022Updated 3 years ago
- DNS Takeover tool written in Goβ2,033Mar 16, 2026Updated last week
- A tool for adding new lines to files, skipping duplicatesβ1,618Jan 12, 2024Updated 2 years ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,820Updated this week
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β1,052Jan 3, 2025Updated last year
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokensβ¦β5,254Mar 13, 2026Updated last week
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.β9,695Mar 16, 2026Updated last week