Alternatives and similar repositories for driftwood:

Users that are interested in driftwood are comparing it to the libraries listed below

• assetnote / ghostbuster
  Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
  ☆272Updated 7 months ago
• WeAreCloudar / s3-account-search
  S3 Account Search
  ☆4Updated 6 months ago
• trufflesecurity / Trufflehog-Chrome-Extension
  ☆389Updated 3 years ago
• AdnaneKhan / Gato-X
  GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.
  ☆320Updated last week
• michelin / ChopChop
  ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
  ☆689Updated last year
• indianajson / can-i-take-over-dns
  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.
  ☆1,024Updated 2 months ago
• lanrat / certgraph
  An open source intelligence tool to crawl the graph of certificate Alternate Names
  ☆350Updated last year
• projectdiscovery / cloudlist
  Cloudlist is a tool for listing Assets from multiple Cloud Providers.
  ☆923Updated 2 weeks ago
• newrelic / rusty-hog
  A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…
  ☆509Updated 4 months ago
• detectify / page-fetch
  Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…
  ☆520Updated 2 weeks ago
• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆298Updated 2 years ago
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆718Updated 8 months ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆344Updated 4 years ago
• firefart / hijagger
  Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration
  ☆296Updated this week
• 0xsha / CloudBrute
  Awesome cloud enumerator
  ☆1,003Updated last month
• hahwul / authz0
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆420Updated 6 months ago
• projectdiscovery / tlsx
  Fast and configurable TLS grabber focused on TLS based data collection.
  ☆962Updated this week
• hakluke / haktrails
  Golang client for querying SecurityTrails API data
  ☆556Updated last year
• trickest / resolvers
  The most exhaustive list of reliable DNS resolvers.
  ☆774Updated this week
• vortexau / dnsvalidator
  Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.
  ☆685Updated last year
• projectdiscovery / nuclei-action
  Vulnerability Scan with Nuclei
  ☆252Updated 5 months ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆218Updated 3 weeks ago
• cr0hn / festin
  FestIn - Open S3 Bucket Scanner
  ☆234Updated 4 years ago
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆879Updated 3 months ago
• glebarez / cero
  Scrape domain names from SSL certificates of arbitrary hosts
  ☆643Updated last year
• tprynn / web-methodology
  Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
  ☆204Updated 6 months ago
• janmasarik / resolvers
  List of periodically validated public DNS resolvers
  ☆232Updated this week
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆247Updated this week
• mxm0z / awesome-sec-s3
  A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets
  ☆360Updated 10 months ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆237Updated last year