Alternatives and similar repositories for yar

Users that are interested in yar are comparing it to the libraries listed below

• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆348Updated 5 years ago
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆208Updated 2 years ago
• MindPointGroup / cloudfrunt
  A tool for identifying misconfigured CloudFront domains
  ☆359Updated 5 years ago
• stevenaldinger / decker
  Declarative penetration testing orchestration framework
  ☆293Updated 5 years ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆254Updated last month
• sudosammy / knary
  A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support
  ☆299Updated last month
• nccgroup / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆111Updated 5 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆236Updated last year
• duo-labs / secret-bridge
  Monitors Github for leaked secrets
  ☆202Updated 11 months ago
• brianwarehime / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆121Updated 4 years ago
• 0xbharath / slurp-old
  A tool to enumerate S3 buckets manually or via certstream
  ☆82Updated 2 years ago
• DolosGroup / Jenkins-Pillage
  A tool for automatically gathering sensitive information from exposed Jenkins servers
  ☆104Updated 2 years ago
• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆299Updated 2 years ago
• cr0hn / festin
  FestIn - Open S3 Bucket Scanner
  ☆233Updated 4 years ago
• lanrat / certgraph
  An open source intelligence tool to crawl the graph of certificate Alternate Names
  ☆357Updated last month
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆93Updated last year
• PaperMtn / gitlab-watchman
  Finding exposed secrets and personal data in GitLab
  ☆200Updated 10 months ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆65Updated 3 years ago
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆218Updated 2 years ago
• Voulnet / barq
  barq: The AWS Cloud Post Exploitation framework!
  ☆385Updated 2 years ago
• himazawa / bento
  Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
  ☆78Updated 4 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆562Updated 2 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆389Updated 2 years ago
• dogangcr / vulnerable-sso
  vulnerable single sign on
  ☆148Updated last year
• welchbj / bscan
  an asynchronous target enumeration tool
  ☆244Updated 2 years ago
• 0x4D31 / burpa
  Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…
  ☆480Updated 7 years ago
• moloch-- / burp-multiplayer
  Burp with Friends
  ☆103Updated 2 years ago
• proabiral / inception
  A highly configurable Framework for easy automated web scanning
  ☆379Updated 5 years ago
• Parasimpaticki / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆54Updated 5 years ago
• opendevsecops / guide-aws-hacking
  This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…
  ☆172Updated 6 years ago