trufflesecurity / TruffleHog-Enterprise-Github-Action

Related projects ⓘ

Alternatives and complementary repositories for TruffleHog-Enterprise-Github-Action

• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 9 months ago
• cisagov / nessus-packer
  Create machine images containing the Nessus vulnerability scanner
  ☆11Updated 3 weeks ago
• santosomar / kev_checker
  A basic Python program to check Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog
  ☆17Updated last year
• CoolHandSquid / TmuxRecon
  Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the targets with the s…
  ☆17Updated 3 years ago
• amroot / amass-to-csv
  A simple script that generates an Excel friendly CSV file from an Amass JSON file.
  ☆13Updated 2 years ago
• ZFPSystems / zaproxy-automation
  This is a collection of ZAProxy Automation Tools and scripts to automate security tests of WEB Applications and WEB Sites
  ☆26Updated last year
• gustavorobertux / goshock
  SonicWall VPN-SSL Exploit* using Golang ( * and other targets vulnerable to shellshock ).
  ☆18Updated 3 years ago
• SpiderLabs / masher
  multiple password 'asher using Python’s hashlib
  ☆14Updated 3 years ago
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆18Updated 3 weeks ago
• blacklanternsecurity / cloudcheck
  Check whether an IP address or hostname belongs to popular cloud providers
  ☆49Updated this week
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆27Updated 2 years ago
• lmoratti / risky-records
  Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
  ☆13Updated 2 months ago
• Acheron-VAF / Vulnerability-Assessment-Framework
  ☆11Updated 7 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆28Updated 3 years ago
• owasp-amass / open-asset-model
  Asset definitions for an organization's external attack surface
  ☆44Updated last week
• cisagov / pe-reports
  Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.
  ☆17Updated 9 months ago
• emgaurav / objectify-s3
  Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.
  ☆15Updated 3 months ago
• dwisiswant0 / siml
  siml is a CLI tool for discovering similar, related to, competitive, or alternative options to a given site.
  ☆13Updated last year
• iamavu / Slyther
  AWS Security Tool
  ☆29Updated 10 months ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆21Updated last year
• projectdiscovery / notify-action
  Notify is a helper utility written in Go that allows you to post output to multiple platforms.
  ☆15Updated 2 years ago
• 0sm0s1z / Tiberium
  ☆21Updated last year
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 2 years ago
• 0xbigshaq / hackmegraph
  a vulnerable GraphQL application
  ☆18Updated 4 years ago
• RichardoC / gitlab-secrets
  This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…
  ☆40Updated 3 months ago
• santosomar / log4j-ioc-detector
  A Simple Log4j Indicator of Compromise Linux Detector
  ☆14Updated 2 years ago
• JupiterOne-Archives / j1nuclei
  ☆14Updated last year
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 6 months ago
• pry0cc / mapper
  A tool to run nmap against each line in a script.
  ☆16Updated 3 years ago