vavkamil / js-snitch
Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets
☆52Updated 2 months ago
Alternatives and similar repositories for js-snitch:
Users that are interested in js-snitch are comparing it to the libraries listed below
- Mine URLs from Browser's Heap Snapshot for fun and profit☆64Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆63Updated last month
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆39Updated last year
- unleashed ffuf☆110Updated 9 months ago
- IIS shortname scanner + bruteforce☆52Updated last year
- Finds graphql queries in javascript files☆60Updated 10 months ago
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆49Updated 3 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 5 months ago
- ai-based domain name generation☆83Updated 2 months ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆50Updated last month
- Results from analyzing data gathered from 1.6 billion subdomains☆24Updated 6 months ago
- Resolvers updated daily for reconftw☆47Updated 2 years ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 5 months ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated 10 months ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆79Updated last year
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆31Updated 2 weeks ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆134Updated 7 months ago
- JSSCM detects expired domains for Stored XSS exploitation during browsing.☆42Updated last week
- vīlicus is a bug bounty api dashboard☆40Updated last year
- A Firefox Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆28Updated 4 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆115Updated 4 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆70Updated 2 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆136Updated 9 months ago
- An MS Sharepoint and Frontpage Auditing Tool☆48Updated 4 months ago
- Downlaod all the nuclei Templates created from many Bug Hunters☆26Updated last year
- ☆62Updated 2 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- BChecks collection for Burp Suite Professional☆96Updated 10 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆35Updated 9 months ago
- ☆34Updated 4 months ago