DefaultCreds-cheat-sheet
swaggerHole
DefaultCreds-cheat-sheet | swaggerHole | |
---|---|---|
2 | 1 | |
5,266 | 45 | |
- | - | |
7.5 | 1.8 | |
7 days ago | about 2 years ago | |
Python | Python | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
DefaultCreds-cheat-sheet
- Database of default usernames and passwords?
-
Wordlists
If looking for a tool that searching default creds : https://github.com/ihebski/DefaultCreds-cheat-sheet
swaggerHole
-
Swaggerhole - Recon tool
Link to the code : https://github.com/Liodeus/swaggerHole
What are some alternatives?
SecLists - SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
arno - An automation tool to install the most popular tools for bug bounty or pentesting.
my-wordlists - wordlists i use for testing security/security testing or whatever you want to call it
reconspider - 🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
mssql-spider - Automated exploitation of MSSQL servers at scale
Dome - Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
mongoaudit - 🔥 A powerful MongoDB auditing and pentesting tool 🔥
webstor - WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.
powershell_commands - Personal sheet for PowerShell 🧢
kitsec-core - Ethical hacking, made easy.
weird_proxies - Reverse proxies cheatsheet
Villain - Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).