Git Scanner Framework
This tool can scan websites with open .git repositories for Bug Hunting/ Pentesting Purposes and can dump the content of the .git repositories from webservers that found from the scanning method. This tool works with the provided Single target or Mass Target from a file list. Installation: - git clone https://github.com/HightechSec/git-scanner - cd git-scanner - bash gitscanner.sh Or you can install in your system like this: - git clone https://github.com/HightechSec/git-scanner - cd git-scanner - sudo cp gitscanner.sh /usr/bin/gitscanner && sudo chmod +x /usr/bin/gitscanner - $ gitscanner Usage Menu's: - Menu 1 is for scanning and dumping git repositories from a provided file that contains the list of the target URL or a provided single target URL. - Menu 2 is for scanning only git repositories from a provided file that contains the list of the target URL or a provided single target URL. - Menu 3 is for dumping only the git repositories from a provided file that contains a list of the target URL or a provided single target URL. This will work for the Maybe Vuln Results or sometimes with a repository that had directory listing disabled or maybe had a 403 Error Response.
FEATURES
ALTERNATIVES
Web-application vulnerability scanner with extensive coverage of security testing modules.
Scans Alpine base images for vulnerabilities using Multi Stage builds in Docker 17.05
A tool to run YARA rules against node_module folders to identify suspicious scripts
Automate software supply chain security by blocking malicious open source components
Platform for users to test cybersecurity skills by exploiting vulnerabilities.
A repository of open-source plugins for Rapid7 InsightConnect
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.