Automated GitHub secret scanning with smart alerting & monitoring.
☆30Jan 15, 2026Updated last month
Alternatives and similar repositories for ghmon
Users that are interested in ghmon are comparing it to the libraries listed below
Sorting:
- ☆20Sep 6, 2023Updated 2 years ago
- ☆18Jul 21, 2025Updated 7 months ago
- Contains nuclei templates for security testing and POCs.☆17Oct 19, 2024Updated last year
- A Burp extension to Fuzz URLs for HTTP parser inconsistencies☆12Jan 9, 2024Updated 2 years ago
- BackupFinder discovers backup files on web servers by generating intelligent patterns.☆103Jul 29, 2025Updated 7 months ago
- Reflector: A tool to check for reflected query parameter values.☆12Jan 13, 2023Updated 3 years ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆17Jul 11, 2025Updated 7 months ago
- Passive Web Vulnerability Detection Tool☆37May 5, 2025Updated 10 months ago
- A simple Bash script to discover all domains associated with a specific Microsoft 365 tenant - new replacement for check_mdi☆40Sep 23, 2025Updated 5 months ago
- ☆25Feb 10, 2026Updated 3 weeks ago
- 🎉 CVE Monitor v1.0☆26Jun 30, 2025Updated 8 months ago
- This Burp extension extracts various data (path, parameter keys, parameter values, subdomains, etc.) from the sitemap. This data is used …☆43Sep 9, 2021Updated 4 years ago
- ☆15Feb 6, 2025Updated last year
- A Burp Suite extension for Lightning/Aura framework security testing with advanced action management, context editing, and comprehensive …☆54Nov 17, 2025Updated 3 months ago
- A CLI tool to extract, analyze, and filter JavaScript links from web pages or URLs, with regex matching and structured JSON output.☆19Jan 6, 2025Updated last year
- **A powerful, offline, single-file HTML tool designed for developers and security researchers to inspect and analyze JavaScript Source Ma…☆90Oct 24, 2025Updated 4 months ago
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆44Oct 27, 2024Updated last year
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆68Jan 6, 2026Updated last month
- SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.☆28Jan 26, 2025Updated last year
- PoC for leaking text nodes via CSS injection☆25Jul 27, 2024Updated last year
- Locally scan all the repositories of a github organization☆31Jul 20, 2025Updated 7 months ago
- A tool for monitoring bug bounty programs across multiple platforms to track scope changes.☆32Feb 17, 2026Updated 2 weeks ago
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…☆121Sep 12, 2025Updated 5 months ago
- ☆20Apr 8, 2023Updated 2 years ago
- collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.☆33Aug 28, 2024Updated last year
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Dec 13, 2025Updated 2 months ago
- Blind XSS service alerting over slack or email☆29Aug 6, 2019Updated 6 years ago
- BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!☆29Feb 10, 2024Updated 2 years ago
- ☆88Sep 20, 2024Updated last year
- Learning materials, vulnerable demo app, and scripts related to the Client-Side Injections Part II YouTube Video☆29Oct 25, 2025Updated 4 months ago
- A simple browser extension to quickly find interesting security-related information on a webpage.☆172Updated this week
- A penetration testing tool for odoo applications.☆75Jan 17, 2026Updated last month
- Basic implementation of certstream to print new subdomains and domains☆36Jul 6, 2021Updated 4 years ago
- Gather results of dorks across a number of search engines☆200Jan 22, 2026Updated last month
- BSentry is a comprehensive collection of additional security checks designed to enhance your Burp Suite experience.☆12Aug 16, 2024Updated last year
- Webarchive is a Go package for pentesters and developers to interacting with the Wayback Machine's CDX API and integrate web archive util…☆11Feb 25, 2024Updated 2 years ago
- Tool for Active Directory Certificate Services enumeration and abuse☆13Oct 7, 2024Updated last year
- ☆19Jul 14, 2025Updated 7 months ago
- FTP-AnonHunter is a Python tool designed to automate the discovery of anonymous open FTP servers. Using Nmap’s ftp-anon script, the tool …☆10Oct 16, 2024Updated last year