Alternatives and similar repositories for awesome-sec-s3

Users that are interested in awesome-sec-s3 are comparing it to the libraries listed below

• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆250Updated last month
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆389Updated 2 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• incogbyte / shosubgo
  Small tool to Grab subdomains using Shodan api.
  ☆466Updated 7 months ago
• hakluke / haktrails
  Golang client for querying SecurityTrails API data
  ☆561Updated last year
• g0ldencybersec / CloudRecon
  ☆490Updated last year
• projectdiscovery / chaos-client
  Go client to communicate with Chaos DB API.
  ☆732Updated last week
• clarketm / s3recon
  Amazon S3 bucket finder and crawler.
  ☆152Updated 3 years ago
• 0xsha / CloudBrute
  Awesome cloud enumerator
  ☆1,018Updated 3 months ago
• redhuntlabs / BucketLoot
  BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…
  ☆420Updated 5 months ago
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆232Updated last year
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆641Updated last year
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆659Updated 2 months ago
• codingo / DNSCewl
  A DNS Bruteforcing Wordlist Generator
  ☆358Updated 2 years ago
• tomnomnom / fff
  The Fairly Fast Fetcher. Requests a bunch of URLs provided on stdin fairly quickly.
  ☆404Updated last year
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆734Updated 2 years ago
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆447Updated this week
• musana / mx-takeover
  mx-takeover focuses DNS MX records and detects misconfigured MX records.
  ☆347Updated last year
• projectdiscovery / nuclei-action
  Vulnerability Scan with Nuclei
  ☆255Updated 7 months ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆345Updated 4 years ago
• sansatart / scrapts
  Scrapts Scrapts Scrapts
  ☆238Updated last year
• WeAreCloudar / s3-account-search
  S3 Account Search
  ☆8Updated 8 months ago
• vortexau / dnsvalidator
  Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.
  ☆691Updated last year
• az7rb / crt.sh
  Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.
  ☆225Updated 9 months ago
• Bandit-HaxUnit / haxunit
  ☆315Updated 2 weeks ago
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆625Updated 7 months ago
• harsh-bothra / Bheem
  ☆374Updated 3 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆520Updated 2 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆203Updated 2 years ago
• gsmith257-cyber / GraphCrawler
  GraphQL automated security testing toolkit
  ☆320Updated last year