redhuntlabs / BucketLootLinks
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
☆424Updated 5 months ago
Alternatives and similar repositories for BucketLoot
Users that are interested in BucketLoot are comparing it to the libraries listed below
Sorting:
- ☆492Updated last year
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆233Updated last year
- Fast and customizable vulnerability scanner For JIRA written in Python☆321Updated 6 months ago
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆240Updated last year
- Search for sensitive data in Postman public library.☆206Updated 6 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆665Updated 3 months ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆450Updated last year
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆534Updated this week
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆421Updated last year
- Discover new target domains using Content Security Policy☆460Updated 3 weeks ago
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.☆233Updated 10 months ago
- Golang client for querying SecurityTrails API data☆562Updated last year
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆341Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆654Updated last year
- AI-powered ffuf wrapper☆508Updated 7 months ago
- Recon MindMap (RMM)☆158Updated last year
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆240Updated 5 months ago
- Secret Magpie - Secret Detection Tool☆232Updated last year
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆350Updated last year
- mx-takeover focuses DNS MX records and detects misconfigured MX records.☆348Updated last year
- Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty☆277Updated last year
- ☆235Updated last year
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆293Updated last year
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆447Updated 3 years ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆315Updated 7 months ago
- Gourlex is a simple tool that can be used to extract URLs and paths from web pages.☆234Updated last year
- Web Security Scanner☆327Updated last month
- The Most Advanced Client-Side Prototype Pollution Scanner☆226Updated 3 weeks ago
- Find subdomains with GPT, for free☆348Updated last year
- ☆207Updated last year