mazen160 / secrets-patterns-db

Related projects ⓘ

Alternatives and complementary repositories for secrets-patterns-db

• praetorian-inc / gato
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆567Updated 2 months ago
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆1,930Updated 3 weeks ago
• hakluke / hakoriginfinder
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆845Updated 9 months ago
• BishopFox / jsluice
  Extract URLs, paths, secrets, and other interesting bits from JavaScript
  ☆1,412Updated 5 months ago
• initstring / cloud_enum
  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
  ☆1,679Updated 3 weeks ago
• psiinon / open-source-web-scanners
  A list of open source web security scanners
  ☆947Updated last month
• 0xsha / CloudBrute
  Awesome cloud enumerator
  ☆868Updated 3 months ago
• projectdiscovery / cloudlist
  Cloudlist is a tool for listing Assets from multiple Cloud Providers.
  ☆855Updated this week
• devploit / nomore403
  Tool to bypass 403/40X response codes.
  ☆1,107Updated 3 months ago
• Aqua-Nautilus / CVE-Half-Day-Watcher
  ☆292Updated 3 months ago
• carlospolop / PurplePanda
  Identify privilege escalation paths within and across different clouds
  ☆665Updated this week
• projectdiscovery / tlsx
  Fast and configurable TLS grabber focused on TLS based data collection.
  ☆857Updated this week
• MattKeeley / Spoofy
  Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
  ☆631Updated 3 weeks ago
• laluka / bypass-url-parser
  bypass-url-parser
  ☆1,018Updated last week
• trickest / wordlists
  Real-world infosec wordlists, updated regularly
  ☆1,394Updated this week
• trickest / inventory
  Asset inventory of over 800 public bug bounty programs.
  ☆1,261Updated this week
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆695Updated 2 months ago
• attacksurge / awesome-attack-surface-monitoring
  Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
  ☆352Updated last month
• HackTricks-wiki / hacktricks-cloud
  ☆577Updated this week
• fyoorer / ShadowClone
  Unleash the power of cloud
  ☆731Updated 4 months ago
• redhuntlabs / BucketLoot
  BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…
  ☆380Updated 3 months ago
• xnl-h4ck3r / xnLinkFinder
  A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target
  ☆1,202Updated 3 months ago
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆934Updated 4 months ago
• nemesida-waf / waf-bypass
  Check your WAF before an attacker does
  ☆1,294Updated this week
• xnl-h4ck3r / waymore
  Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!
  ☆1,725Updated 4 months ago
• Ostorlab / oxo
  OXO is a security scanning orchestrator for the modern age.
  ☆526Updated last week
• projectdiscovery / alterx
  Fast and customizable subdomain wordlist generator using DSL
  ☆722Updated this week
• projectdiscovery / cdncheck
  A utility to detect various technology for a given IP address.
  ☆770Updated this week
• stark0de / nginxpwner
  Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
  ☆1,474Updated 8 months ago
• projectdiscovery / asnmap
  Go CLI and Library for quickly mapping organization network ranges using ASN information.
  ☆767Updated this week