mazen160 / secrets-patterns-dbLinks
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
☆1,316Updated 5 months ago
Alternatives and similar repositories for secrets-patterns-db
Users that are interested in secrets-patterns-db are comparing it to the libraries listed below
Sorting:
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,715Updated last year
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆993Updated 3 weeks ago
- Awesome cloud enumerator☆1,086Updated 10 months ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆722Updated 4 months ago
- Asset inventory of over 800 public bug bounty programs.☆1,509Updated 11 months ago
- Unleash the power of cloud☆819Updated last year
- Real-world infosec wordlists, updated regularly☆1,612Updated this week
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆971Updated 2 years ago
- Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.☆1,000Updated last week
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆2,000Updated 6 months ago
- Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.☆1,390Updated 2 months ago
- Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a …☆1,540Updated last week
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆887Updated 2 years ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆2,085Updated last year
- The most exhaustive list of reliable DNS resolvers.☆926Updated this week
- ProjectDiscovery's Open Source Tool Manager☆1,042Updated 3 weeks ago
- 🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.☆961Updated last year
- Automating situational awareness for cloud penetration tests.☆2,279Updated this week
- Fast and configurable TLS grabber focused on TLS based data collection.☆1,064Updated last week
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…☆796Updated 7 months ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,469Updated last week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆713Updated last week
- bypass-url-parser☆1,109Updated last week
- Organize your API security assessment by using MindAPI. It's free and open for community collaboration.☆857Updated 4 months ago
- Convolutional neural network for analyzing pentest screenshots☆1,276Updated last year
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆896Updated last week
- Enumerate the permissions associated with AWS credential set☆1,215Updated last year
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,494Updated this week
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆1,010Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆436Updated 3 weeks ago