swaggerHole
DefaultCreds-cheat-sheet
swaggerHole | DefaultCreds-cheat-sheet | |
---|---|---|
1 | 2 | |
45 | 5,297 | |
- | - | |
1.8 | 7.5 | |
about 2 years ago | 8 days ago | |
Python | Python | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
swaggerHole
-
Swaggerhole - Recon tool
Link to the code : https://github.com/Liodeus/swaggerHole
DefaultCreds-cheat-sheet
- Database of default usernames and passwords?
-
Wordlists
If looking for a tool that searching default creds : https://github.com/ihebski/DefaultCreds-cheat-sheet
What are some alternatives?
arno - An automation tool to install the most popular tools for bug bounty or pentesting.
SecLists - SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
reconspider - 🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
my-wordlists - wordlists i use for testing security/security testing or whatever you want to call it
Dome - Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
mssql-spider - Automated exploitation of MSSQL servers at scale
webstor - WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.
mongoaudit - 🔥 A powerful MongoDB auditing and pentesting tool 🔥
kitsec-core - Ethical hacking, made easy.
powershell_commands - Personal sheet for PowerShell 🧢
weird_proxies - Reverse proxies cheatsheet
Villain - Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).