nielsing / yarLinks
Yar is a tool for plunderin' organizations, users and/or repositories.
β238Updated 4 years ago
Alternatives and similar repositories for yar
Users that are interested in yar are comparing it to the libraries listed below
Sorting:
- Find cloud assets that no one wants exposed π βοΈβ348Updated 5 years ago
- Uncover forgotten secrets and bring them back to life, haunting security and operations teams.β208Updated 2 years ago
- A tool for identifying misconfigured CloudFront domainsβ359Updated 5 years ago
- Declarative penetration testing orchestration frameworkβ293Updated 5 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.β254Updated last month
- A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover supportβ299Updated last month
- Pentester-focused Docker registry tool to enumerate and pull imagesβ111Updated 5 years ago
- Benchmarking repo for secrets scanningβ236Updated last year
- Monitors Github for leaked secretsβ202Updated 11 months ago
- AWS S3 Bucket/Object Finderβ121Updated 4 years ago
- A tool to enumerate S3 buckets manually or via certstreamβ82Updated 2 years ago
- A tool for automatically gathering sensitive information from exposed Jenkins serversβ104Updated 2 years ago
- Search exposed EBS volumes for secretsβ299Updated 2 years ago
- FestIn - Open S3 Bucket Scannerβ233Updated 4 years ago
- An open source intelligence tool to crawl the graph of certificate Alternate Namesβ357Updated last month
- A simple file-based scanner to look for potential AWS access and secret keys in filesβ93Updated last year
- Finding exposed secrets and personal data in GitLabβ200Updated 10 months ago
- Monitoring GitHub for sensitive data shared publiclyβ65Updated 3 years ago
- These are the regexes that power truffleHogβ218Updated 2 years ago
- barq: The AWS Cloud Post Exploitation framework!β385Updated 2 years ago
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.β78Updated 4 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.β562Updated 2 years ago
- A collection of useful Serverless functions I use when pentestingβ389Updated 2 years ago
- vulnerable single sign onβ148Updated last year
- an asynchronous target enumeration toolβ244Updated 2 years ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applicaβ¦β480Updated 7 years ago
- Burp with Friendsβ103Updated 2 years ago
- A highly configurable Framework for easy automated web scanningβ379Updated 5 years ago
- π° A Python script for AWS S3 bucket enumeration.β54Updated 5 years ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS weaβ¦β172Updated 6 years ago