trufflesecurity / trufflehog
Find, verify, and analyze leaked credentials
β18,736Updated this week
Alternatives and similar repositories for trufflehog:
Users that are interested in trufflehog are comparing it to the libraries listed below
- Find secrets with Gitleaks πβ19,546Updated this week
- In-depth attack surface mapping and asset discoveryβ12,812Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and moreβ25,434Updated last week
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enablβ¦β22,946Updated this week
- Fast passive subdomain enumeration tool.β11,503Updated this week
- Open-Source Phishing Toolkitβ12,459Updated 6 months ago
- π gowitness - a golang, web screenshot utility using Chrome Headlessβ3,683Updated 3 weeks ago
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.β3,885Updated last month
- Community curated list of templates for the nuclei engine to find security vulnerabilities.β9,991Updated this week
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of β¦β12,846Updated 2 months ago
- Open Source Vulnerability Management Platformβ5,359Updated last month
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.β11,472Updated this week
- The recursive internet scanner for hackers. π§‘β8,329Updated this week
- An HTTP toolkit for security research.β6,859Updated 2 months ago
- Reconnaissance tool for GitHub organizationsβ6,020Updated 2 years ago
- SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.β14,164Updated 4 months ago
- π₯ Web-application firewalls (WAFs) from security standpoint.β6,598Updated 5 months ago
- Nikto web server scannerβ9,145Updated last month
- A Tool for Domain Flyoversβ5,741Updated 2 years ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,084Updated last week
- Scan for misconfigured S3 buckets across S3-compatible APIs!β2,738Updated this week
- Fast web fuzzer written in Goβ13,794Updated last week
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.β5,248Updated 5 months ago
- HTTP parameter discovery suite.β5,568Updated last month
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, suβ¦β3,434Updated last year
- Vulnerability Static Analysis for Containersβ10,584Updated this week
- Automated All-in-One OS Command Injection Exploitation Tool.β5,243Updated this week
- A collection of custom security tools for quick needs.β3,192Updated last year
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ4,645Updated 3 months ago
- Multi-Cloud Security Auditing Toolβ7,071Updated 4 months ago