redhuntlabs / BucketLootLinks
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
☆417Updated 4 months ago
Alternatives and similar repositories for BucketLoot
Users that are interested in BucketLoot are comparing it to the libraries listed below
Sorting:
- ☆489Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆655Updated last month
- Fast and customizable vulnerability scanner For JIRA written in Python☆320Updated 5 months ago
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆232Updated last year
- Discover new target domains using Content Security Policy☆445Updated 3 weeks ago
- Search for sensitive data in Postman public library.☆205Updated 5 months ago
- Golang client for querying SecurityTrails API data☆559Updated last year
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆505Updated 3 weeks ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆638Updated last year
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆291Updated last year
- Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty☆277Updated last year
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆240Updated 3 months ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆447Updated 3 years ago
- A suite for hunting suspicious targets, expose domains and phishing discovery☆358Updated last month
- ☆204Updated last year
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆349Updated last year
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.☆222Updated 9 months ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆450Updated last year
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆356Updated 3 weeks ago
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆238Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆976Updated last month
- De-clutter a list of URLs☆340Updated 6 months ago
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆417Updated last year
- Zero-dollar attack surface management tool☆288Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆69Updated last year
- AI-powered ffuf wrapper☆492Updated 6 months ago
- CT Log Scanner☆362Updated 2 months ago
- AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,☆651Updated last year
- Find subdomains with GPT, for free☆346Updated last year
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆384Updated this week