molly / gh-dork

Related projects ⓘ

Alternatives and complementary repositories for gh-dork

• AlecBlance / S3BucketList
  Chrome extension that lists Amazon S3 Buckets while browsing
  ☆78Updated 3 weeks ago
• nexxai / Substr3am
  Passive reconnaissance/enumeration of interesting targets by watching for SSL certificates being issued
  ☆66Updated 2 years ago
• trickest / insiders
  Archive of Potential Insider Threats
  ☆136Updated last year
• ozzi- / tld_scanner
  Scan all possible TLD's for a given domain name
  ☆82Updated 3 years ago
• codingo / fastsub
  A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.
  ☆57Updated 2 years ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆151Updated 7 months ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆59Updated 3 years ago
• m8sec / SubWalker
  Simultaneously execute various subdomain enumeration tools and aggregate results.
  ☆39Updated 5 months ago
• emgaurav / objectify-s3
  Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.
  ☆15Updated 3 months ago
• samwcyo / CVE-2021-27651-PoC
  RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2
  ☆60Updated 3 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 3 years ago
• hahwul / websocket-connection-smuggler
  websocket-connection-smuggler
  ☆67Updated 4 years ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆63Updated 10 months ago
• dhn / udon
  A simple tool that helps to find assets/domains based on the Google Analytics ID.
  ☆169Updated 6 months ago
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆50Updated 4 years ago
• trickest / enumerepo
  List all public repositories for (valid) GitHub usernames
  ☆68Updated last year
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 2 years ago
• AlfredBerg / dnsline
  Tool for making it easy to collect dns results from the CLI
  ☆39Updated 3 months ago
• redcode-labs / UnChain
  A tool to find redirection chains in multiple URLs
  ☆79Updated 3 years ago
• m8sec / taser
  Python resource library for creating security related tooling
  ☆79Updated 4 months ago
• woj-ciech / Shomap
  Create visualization from Shodan query
  ☆72Updated 3 years ago
• assetnote / jira-mobile-ssrf-exploit
  Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
  ☆87Updated 2 years ago
• dhn / spk
  spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.
  ☆82Updated 6 months ago
• alifathi-h1 / gh_scanner
  GH Scanner Tool is written in Python3 and designed for penetration testers and bug bounty hunters to scan Organization/User repositories …
  ☆33Updated 6 months ago
• j3ssie / goverview
  goverview - Get an overview of the list of URLs
  ☆144Updated last year
• digininja / GitHunter
  A tool for searching a Git repository for interesting content
  ☆95Updated 11 months ago
• Santandersecurityresearch / corsair_scan
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆122Updated last year
• vortexau / cdn
  Compiles a list of major CDN and WAF subnets.
  ☆63Updated this week
• un4gi / fave
  Search for vulnerabilities and exposures while filtering based on age, keywords, and other parameters.
  ☆124Updated 2 years ago
• hackedbyagirl / OSCP
  OSCP Preperation
  ☆12Updated 3 years ago