credentials-gathering

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.

osint credentials python3 pentesting leak redteaming redteam credentials-gathering

Updated Jan 21, 2019
Python

twelvesec / passcat

Star

Passwords Recovery Tool

credentials secrets pentesting passwords pentest password-retrieval redteaming redteam password-recovery credentials-gathering

Updated Feb 3, 2021
C

kerbyj / goLazagne

Star

Go library for credentials recovery

golang firefox security chrome hack password-manager pentesting-windows penetration-testing password-safety golang-library credential-manager password-retrieval pentest-tool password-recovery credentials-gathering summer-of-hack

Updated Sep 7, 2022
Go

Viralmaniar / XposedOrNot

Star

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

osint recon intelligence-gathering reconnaissance password-leak credentials-gathering osinttool penetration-testing-tools breach-compilation password-breach

Updated Jan 5, 2020
Python

shantanu561993 / SharpLoginPrompt

Star

credentials post-exploitation redteam credentials-gathering offensivesecurity loginprompt

Updated Dec 19, 2020
C#

breakpointHQ / chrome-bandit

Star

Programmatically extract saved passwords from Chromium based browsers.

macos security google-chrome microsoft-edge opera-browser credentials-gathering readteaming redteam-tools

Updated Feb 26, 2022
Ruby

hc0d3r / sshd-poison

Star

sshd-poison is a tool that modifies a sshd binary to capture password-based authentications and allows you to login in some accounts using a magic-pass.

ssh hook elf credentials-gathering magic-pass

Updated Dec 16, 2020
C

truerustyy / wcreddump

Star

Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with a mounted windows drive.

hashing security credentials password windows-10 cybersecurity password-safety pentesting pentest windows-hacking security-tools pentest-tool pin-code windows-hello credentials-gathering pentesting-tools windows-11

Updated Jun 13, 2024
Python

leftp / BackupCreds

Star

A C# implementation of dumping credentials from Windows Credential Manager

password redteaming redteam credentials-gathering redteam-tools redteaming-tools

Updated Sep 23, 2023
C#

sahadnk72 / jecretz

Star

Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets

security credentials penetration-testing pentesting bugbounty red-team security-tools red-team-engagement redteaming red-teaming red-teams red-teamers credentials-gathering pentesting-tools penetration-testing-tools sensitive-contents

Updated Dec 8, 2022
Python

dwisiswant0 / secpat2gf

Sponsor

Star

convert secret patterns to gf compatible.

secrets-scan gf trufflehog credentials-gathering git-secrets gitleaks secrets-detection credentials-scanner gitguardian trufflehog3 secrets-scanner gf-secrets

Updated Feb 11, 2023
Python

scipag / KleptoKitty

Star

Invoke-KleptoKitty - Deploys Payloads and collects credentials

windows remote-control credentials powershell remote-execution wmi lsa evasion mimikatz psexec redteam credentials-gathering lateral-movement windows-remote-management

Updated Jul 28, 2021
PowerShell

saladandonionrings / leaky

Star

Leaky simplifies the management and visualization of database leak files containing credentials, enhancing efficiency in data analysis and redteam operations.