trufflesecurity / trufflehog
Find, verify, and analyze leaked credentials
β17,870Updated this week
Alternatives and similar repositories for trufflehog:
Users that are interested in trufflehog are comparing it to the libraries listed below
- Find secrets with Gitleaks πβ18,687Updated this week
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enablβ¦β21,929Updated this week
- Fast passive subdomain enumeration tool.β11,022Updated this week
- In-depth attack surface mapping and asset discoveryβ12,376Updated last month
- Fast web fuzzer written in Goβ13,253Updated 6 months ago
- Reconnaissance tool for GitHub organizationsβ5,976Updated 2 years ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β4,903Updated this week
- An enterprise friendly way of detecting and preventing secrets in code.β3,904Updated this week
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.β8,018Updated last week
- Directory/File, DNS and VHost busting tool written in Goβ10,777Updated 3 weeks ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.β10,938Updated this week
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.β3,857Updated last year
- A Workflow Engine for Offensive Securityβ5,439Updated 8 months ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and moreβ24,470Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ5,564Updated 5 months ago
- A vulnerability scanner for container images and filesystemsβ9,301Updated this week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.β4,492Updated this week
- A Tool for Domain Flyoversβ5,700Updated 2 years ago
- HTTP parameter discovery suite.β5,385Updated last month
- A fast, simple, recursive content discovery tool written in Rust.β6,174Updated last week
- A pretty sweet vulnerability scannerβ4,099Updated 4 months ago
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β4,981Updated 2 weeks ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.β9,053Updated 3 months ago
- a drop-in replacement for Nmap powered by shodan.ioβ2,955Updated 9 months ago
- TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.β23,967Updated last month
- Community curated list of templates for the nuclei engine to find security vulnerabilities.β9,628Updated this week
- Fast subdomains enumeration tool for penetration testersβ10,071Updated 5 months ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Gβ¦β2,055Updated 6 months ago
- A python script that finds endpoints in JavaScript filesβ3,796Updated 9 months ago
- Nikto web server scannerβ8,872Updated 3 weeks ago