michelin / ChopChopLinks
ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
☆714Updated 2 years ago
Alternatives and similar repositories for ChopChop
Users that are interested in ChopChop are comparing it to the libraries listed below
Sorting:
- Awesome cloud enumerator☆1,047Updated 7 months ago
- A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆398Updated 10 months ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆422Updated 3 weeks ago
- Golang client for querying SecurityTrails API data☆574Updated 2 years ago
- Go client to communicate with Chaos DB API.☆785Updated this week
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆268Updated 2 years ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆795Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆393Updated 3 years ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆976Updated this week
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆753Updated 2 years ago
- A rapid API for the Project Sonar dataset☆656Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆633Updated 3 months ago
- Convolutional neural network for analyzing pentest screenshots☆1,248Updated last year
- ☆404Updated 3 years ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆428Updated last year
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆535Updated 2 years ago
- A Security Tool for Enumerating WebSockets☆361Updated 3 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆486Updated 2 years ago
- Scan only once by IP address and reduce scan times with Nmap for large amounts of data.☆392Updated 2 months ago
- Takes a list of URLs and returns their HTTP response codes☆400Updated last year
- Subdomain finder☆369Updated last year
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆961Updated last year
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆988Updated last year
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,501Updated this week
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆756Updated 3 years ago
- Vulnerability Scan with Nuclei☆268Updated 2 weeks ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆761Updated last year
- Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.☆707Updated last year
- Open Redirection Analyzer☆799Updated 2 years ago
- Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a …☆1,507Updated this week