Skip to content

Instantly share code, notes, and snippets.

View atcasanova's full-sized avatar

Alfredo Casanova atcasanova

32 followers · 40 following
View GitHub Profile
@win3zz
win3zz / GitHub-Leaked-API-Keys-and-Secrets.md
Last active April 27, 2025 02:59

GitHub Search Syntax for Finding API Keys/Secrets/Tokens

As a security professional, it is important to conduct a thorough reconnaissance. With the increasing use of APIs nowadays, it has become paramount to keep access tokens and other API-related secrets secure in order to prevent leaks. However, despite technological advances, human error remains a factor, and many developers still unknowingly hardcode their API secrets into source code and commit them to public repositories. GitHub, being a widely popular platform for public code repositories, may inadvertently host such leaked secrets. To help identify these vulnerabilities, I have created a comprehensive search list using powerful search syntax that enables the search of thousands of leaked keys and secrets in a single search.

Search Syntax:

(path:*.{File_extension1} OR path:*.{File_extension-N}) AND ({Keyname1} OR {Keyname-N}) AND (({Signature/pattern1} OR {Signature/pattern-N}) AND ({PlatformTag1} OR {PlatformTag-N}))

Examples:

**1.

@atcasanova
atcasanova / wifi-cheatsheet.md
Created May 23, 2023 12:56
wifi pentest cheatsheet

Step-by-Step Guide for WEP, WPA, PMKID, ARP Request Replay, WPS PIN, HITRE, and Evil Twin Attacks

WiFi penetration testing is a critical component of network security, aiming to identify vulnerabilities in wireless networks and implement appropriate security measures.

Our WiFi penetration testing cheatsheet covers various techniques and methodologies targeting WEP, WPA, WPA2, and WPA3 encryption standards.

Essential Tools for WiFi Penetration Testing

Here are some popular automated tools for WiFi penetration testing that will be invaluable for your WiFi penetration testing cheatsheet:

@BushidoUK
BushidoUK / Ransomware Victims on Shodan
Created March 27, 2023 23:12
Loki
https://www.shodan.io/search?query=%22Loki+Locker%22
BlackBit
https://www.shodan.io/search?query=%22Encrypted+by+BlackBit%22
BlackHunt
https://www.shodan.io/search?query=%22Your+Network+Infected+with+BlackHunt+Ransomware+Team%22
Amelia, Proxima
@michsiw96
michsiw96 / a_hundred_bases_of_grey.py
Last active August 23, 2023 18:26
from PIL import ImageSequence, Image
import string, binascii, base64
colors = []
for i in range(6):
im = Image.open('flag' + str(i + 1) + '.gif')
colors.append([])
try:
while True:
@merces
merces / minibash.sh
Created March 6, 2015 05:56
A minimalist shell skeleton
#!/bin/bash
echo "bemvindo ao minibash
comandos disponiveis: listar sair"
while :; do
read -p '$ ' cmd
case $cmd in
listar)
ls ;;