pypi-data / pypi-aws-secrets
This repo scans pypi for AWS keys
☆105Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for pypi-aws-secrets
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆286Updated this week
- clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerabil…☆98Updated last year
- This repository collects lists of security-relavent Python APIs, along with examples of exploits using those APIs☆35Updated 3 years ago
- Cloud agnostic IAM permissions enumerator☆139Updated 2 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆110Updated last year
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆151Updated 2 months ago
- Search for vulnerabilities and exposures while filtering based on age, keywords, and other parameters.☆124Updated 2 years ago
- ☆110Updated last year
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.☆57Updated 2 years ago
- Scan DockerHub images that match a keyword to find secrets.☆54Updated 3 years ago
- boostsecurityio/lotp☆102Updated 7 months ago
- A GitHub Action for pip-audit☆68Updated last week
- Creosote is our solution to searching for the tarfile vulnerability described by CVE-2007-4559.☆83Updated 2 years ago
- Nuclei plugins to audit Chrome extensions☆64Updated 4 months ago
- Burp Suite Enterprise Edition Power Tools☆16Updated 3 months ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated last year
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆138Updated 3 years ago
- How GitHub Actions workflows can be hacked☆106Updated 3 months ago
- a smart DNS response-guided subdomain fuzzer☆146Updated last year
- Rust-based high performance domain permutation generator.☆275Updated 11 months ago
- Vandalize old emails. Like an NFT that's easy to prove ownership of.☆34Updated last year
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆266Updated 2 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆22Updated 3 months ago
- ☆90Updated 2 years ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆166Updated 6 months ago
- S3 Account Search☆246Updated last month
- CQ, a code security scanner☆97Updated 6 months ago
- Manager of third-party sources of Semgrep rules 🗂☆76Updated 4 months ago
- a deterministic finite automata ranker☆69Updated 2 years ago