mazen160 / secrets-patterns-dbLinks
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
☆1,289Updated 5 months ago
Alternatives and similar repositories for secrets-patterns-db
Users that are interested in secrets-patterns-db are comparing it to the libraries listed below
Sorting:
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,711Updated last year
- Awesome cloud enumerator☆1,080Updated 9 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆973Updated last year
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆990Updated last week
- Unleash the power of cloud☆815Updated last year
- Fast and configurable TLS grabber focused on TLS based data collection.☆1,041Updated 3 weeks ago
- Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.☆974Updated this week
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,986Updated 5 months ago
- 🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.☆957Updated 11 months ago
- Organize your API security assessment by using MindAPI. It's free and open for community collaboration.☆857Updated 3 months ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆723Updated 3 months ago
- ProjectDiscovery's Open Source Tool Manager☆1,036Updated this week
- Real-world infosec wordlists, updated regularly☆1,604Updated this week
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,455Updated last week
- Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.☆1,580Updated last year
- The most exhaustive list of reliable DNS resolvers.☆918Updated this week
- Asset inventory of over 800 public bug bounty programs.☆1,504Updated 10 months ago
- Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a …☆1,531Updated last week
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,269Updated 4 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆447Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆437Updated last week
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆885Updated 2 years ago
- bypass-url-parser☆1,107Updated last week
- Fast and customizable subdomain wordlist generator using DSL☆905Updated 3 weeks ago
- Go CLI and Library for quickly mapping organization network ranges using ASN information.☆980Updated last week
- OXO is a security scanning orchestrator for the modern age.☆559Updated last week
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,449Updated 6 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆711Updated last month
- ☆718Updated last week
- Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.☆1,382Updated last month