viralvaghela / secret-finderLinks
command-line tool designed to rapidly scan decompiled Android applications for hardcoded secrets. It moves beyond simple keyword searching by using a powerful regex engine to identify high-entropy strings, specific key patterns, and other sensitive data that could pose a security risk.
☆38Updated 4 months ago
Alternatives and similar repositories for secret-finder
Users that are interested in secret-finder are comparing it to the libraries listed below
Sorting:
- Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript…☆86Updated 5 months ago
- Ultimate Wordlist for Web Content Discovery☆67Updated 7 months ago
- ☆66Updated last year
- ☆44Updated 5 months ago
- Fast subdomains enumeration tool for penetration testers and bug bounty hunters☆40Updated last year
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆38Updated last month
- smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter☆156Updated last year
- 🚀 XSSFUZZ - A tool for detecting XSS vulnerabilities in web applications.☆123Updated last year
- Here Are Some Bug Bounty Resource From Twitter☆103Updated 6 months ago
- ☆180Updated last year
- Collect XSS vulnerable parameters from entire domain.☆155Updated 3 years ago
- A passive way to find backups/ sensitive information.☆90Updated 5 months ago
- A powerful URL parameter and request fuzzing tool that processes URLs or Burp Suite raw requests, replacing values with custom payloads w…☆21Updated 3 weeks ago
- A modern tool written in python for hunting open redirection☆28Updated 2 years ago
- CRLF Bug scanner for WebPentesters and Bugbounty Hunters☆41Updated 2 years ago
- This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…☆106Updated last year
- My small collection of reports templates☆87Updated 6 years ago
- All in one web Recon app☆39Updated last year
- A collection of automation scripts for bug bounty hunting.☆31Updated 2 years ago
- KakHunt is a python GUI Tool private tool which earns me 100s of bugs every month. It spawns URLS and filters Sensitive Info.☆51Updated 2 years ago
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…☆34Updated 2 years ago
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆134Updated last year
- ☆38Updated 10 months ago
- The powerfull Extract and Scanner Javascript urls (Upgrade Deeper search)☆21Updated last year
- ☆52Updated 2 months ago
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆65Updated last year
- ☆30Updated last year
- ☆81Updated last year
- Automated Tool for Testing Header Based Blind SQL Injection☆318Updated 2 years ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆122Updated last year