nielsing / yarLinks
Yar is a tool for plunderin' organizations, users and/or repositories.
β238Updated 4 years ago
Alternatives and similar repositories for yar
Users that are interested in yar are comparing it to the libraries listed below
Sorting:
- Find cloud assets that no one wants exposed π βοΈβ348Updated 5 years ago
- Uncover forgotten secrets and bring them back to life, haunting security and operations teams.β208Updated 2 years ago
- A tool for identifying misconfigured CloudFront domainsβ359Updated 5 years ago
- A tool to enumerate S3 buckets manually or via certstreamβ82Updated 2 years ago
- Search exposed EBS volumes for secretsβ299Updated 2 years ago
- Declarative penetration testing orchestration frameworkβ294Updated 5 years ago
- barq: The AWS Cloud Post Exploitation framework!β387Updated 2 years ago
- A tool for automatically gathering sensitive information from exposed Jenkins serversβ104Updated 2 years ago
- AWS S3 Bucket/Object Finderβ120Updated 4 years ago
- These are the regexes that power truffleHogβ218Updated 2 years ago
- A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover supportβ299Updated 3 weeks ago
- Monitors Github for leaked secretsβ200Updated 10 months ago
- An open source intelligence tool to crawl the graph of certificate Alternate Namesβ357Updated last week
- Benchmarking repo for secrets scanningβ237Updated last year
- Monitoring GitHub for sensitive data shared publiclyβ66Updated 3 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.β253Updated 3 weeks ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS weaβ¦β172Updated 6 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in filesβ93Updated last year
- Finding exposed secrets and personal data in GitLabβ199Updated 9 months ago
- FestIn - Open S3 Bucket Scannerβ233Updated 4 years ago
- A collection of useful Serverless functions I use when pentestingβ388Updated 2 years ago
- Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.β95Updated last year
- Pentester-focused Docker registry tool to enumerate and pull imagesβ111Updated 5 years ago
- β128Updated 6 years ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applicaβ¦β480Updated 7 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.β252Updated 3 years ago
- rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessmentsβ245Updated 5 years ago
- A tool to hunt for credentials in github wild AKA git*huntβ297Updated 2 years ago
- secretz, minimizing the large attack surface of Travis CIβ327Updated 3 years ago
- Assorted tools for security-related task for git repositoriesβ59Updated 3 years ago