mazen160 / secrets-patterns-db
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
☆1,041Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for secrets-patterns-db
- GitHub Actions Pipeline Enumeration and Attack Tool☆567Updated 2 months ago
- Automating situational awareness for cloud penetration tests.☆1,930Updated 3 weeks ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆845Updated 9 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,412Updated 5 months ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,679Updated 3 weeks ago
- A list of open source web security scanners☆947Updated last month
- Awesome cloud enumerator☆868Updated 3 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆855Updated this week
- Tool to bypass 403/40X response codes.☆1,107Updated 3 months ago
- ☆292Updated 3 months ago
- Identify privilege escalation paths within and across different clouds☆665Updated this week
- Fast and configurable TLS grabber focused on TLS based data collection.☆857Updated this week
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆631Updated 3 weeks ago
- bypass-url-parser☆1,018Updated last week
- Real-world infosec wordlists, updated regularly☆1,394Updated this week
- Asset inventory of over 800 public bug bounty programs.☆1,261Updated this week
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆695Updated 2 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆352Updated last month
- ☆577Updated this week
- Unleash the power of cloud☆731Updated 4 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆380Updated 3 months ago
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,202Updated 3 months ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆934Updated 4 months ago
- Check your WAF before an attacker does☆1,294Updated this week
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!☆1,725Updated 4 months ago
- OXO is a security scanning orchestrator for the modern age.☆526Updated last week
- Fast and customizable subdomain wordlist generator using DSL☆722Updated this week
- A utility to detect various technology for a given IP address.☆770Updated this week
- Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.☆1,474Updated 8 months ago
- Go CLI and Library for quickly mapping organization network ranges using ASN information.☆767Updated this week