DumpsterDiver Logo

DumpsterDiver

0
Free
Visit Website

DumpsterDiver is a tool that can analyze big volumes of data in search of hardcoded secrets like keys (e.g. AWS Access Key, Azure Share Key or SSH keys) or passwords. It allows creating simple search rules with basic conditions (e.g. report only csv files including at least 10 email addresses). The main idea of this tool is to detect any potential secret leaks. Key features include: using Shannon Entropy to find private keys, searching through git logs, unpacking compressed archives (e.g. zip, tar.gz etc.), supporting advanced search using simple rules, searching for hardcoded passwords, and being fully customizable.

FEATURES

ALTERNATIVES

Tool for visualizing and analyzing control paths in Active Directory to determine access privileges and permissions.

Free

Pathlock is an identity security platform that provides compliance-focused governance, access management, and continuous controls monitoring across enterprise applications with particular emphasis on ERP systems.

Commercial

Abusing DNSAdmins privilege for escalation in Active Directory

Free

A blog post explaining the concept of Active Directory Trusts and their enumeration and exploitation

Free

Helm plugin for decrypting encrypted Helm value files on the fly and integrating with cloud native secret managers.

Free

Guidelines and best practices for securely storing passwords.

Free

Securely store and access AWS credentials in a development environment.

Free

Provision, manage, and renew SSL/TLS certificates for your AWS resources with AWS Certificate Manager.

Free