pseudo-security / slacksecretsLinks
Scans Slack for API tokens, credentials, passwords, and more using YARA rules
☆40Updated 4 years ago
Alternatives and similar repositories for slacksecrets
Users that are interested in slacksecrets are comparing it to the libraries listed below
Sorting:
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆77Updated 3 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆93Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 5 years ago
- Route53/CloudFront Vulnerability Assessment Utility☆86Updated last year
- Hayat is a script for report and analyze Google Cloud Platform resources.☆80Updated 5 years ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆111Updated 4 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 4 years ago
- ☆137Updated 2 years ago
- These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok☆172Updated 5 months ago
- Burp with Friends☆103Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆103Updated last year
- A tool to enumerate S3 buckets manually or via certstream☆82Updated 2 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 6 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆63Updated 2 years ago
- Burp Extension for AWS Signing☆89Updated 6 months ago
- Application and Service Fingerprinting☆133Updated 2 years ago
- A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…☆39Updated 4 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- vulnerable single sign on☆148Updated last year
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆75Updated 4 years ago
- Scripts that we use for pentesting☆42Updated 8 years ago
- An AWS Lambda vulnerable application written in flask.☆49Updated 7 years ago
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)☆89Updated 2 years ago
- Pentester-focused Docker registry tool to enumerate and pull images☆111Updated 5 years ago
- AWS S3 Sensitive Data Search☆36Updated 3 years ago
- A Docker container for remote penetration testing.☆137Updated 4 years ago
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.☆78Updated 4 years ago
- Scan DockerHub images that match a keyword to find secrets.☆60Updated 4 years ago
- Pivot into private VPC networks using a VPN connection☆43Updated 5 years ago