DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
☆40Nov 21, 2021Updated 4 years ago
Alternatives and similar repositories for dustilock
Users that are interested in dustilock are comparing it to the libraries listed below
Sorting:
- Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks☆61May 29, 2022Updated 3 years ago
- Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git☆146Mar 12, 2026Updated last week
- A very vulnerable implementation of a GraphQL API.☆17Mar 13, 2026Updated last week
- Checkmarx CxFlow GitHub Action with SARIF output☆54Nov 13, 2025Updated 4 months ago
- Broken web app intentionally built with pentesting obstacles☆15Jun 21, 2019Updated 6 years ago
- A powerful containerized tool that automatically downloads, extracts, and scans packages from PyPI and npm for embedded secrets, API keys…☆19Jul 25, 2025Updated 7 months ago
- DEFCON 33 Workshop - Open Source Malware 101 - Everything you always wanted to know about npm malware (and more)☆15Aug 8, 2025Updated 7 months ago
- ☆12Mar 9, 2026Updated last week
- Burp Enterprise Toolkit☆12Feb 25, 2022Updated 4 years ago
- ManageEngine ADManager Command Injection☆11Oct 2, 2023Updated 2 years ago
- ☆11Apr 21, 2022Updated 3 years ago
- Locally scan all the repositories of a github organization☆33Jul 20, 2025Updated 8 months ago
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆23Jun 28, 2024Updated last year
- Notify is a helper utility written in Go that allows you to post output to multiple platforms.☆18May 27, 2022Updated 3 years ago
- this repository is a base so everyone can modify it according to there thoughts and process used☆10Jun 9, 2021Updated 4 years ago
- Legitimate bug bounty programs value ethical practices and provide clear rewards to researchers for identifying security flaws☆44Sep 22, 2024Updated last year
- scripts & notes☆13Nov 4, 2019Updated 6 years ago
- automatically detect software supply chain smells and issues http://arxiv.org/pdf/2410.16049☆18Mar 13, 2026Updated last week
- Golang implementation of PyMISP-feedgenerator☆18Jul 31, 2022Updated 3 years ago
- OWASP Top 10 Implemented in ASP.NET MVC☆15Mar 15, 2015Updated 11 years ago
- ☆38Nov 24, 2025Updated 3 months ago
- CRLF Detection based on @BlackFan 's work See link below☆16Mar 14, 2024Updated 2 years ago
- Template repo for Conjur repositories☆17Nov 3, 2025Updated 4 months ago
- Checkmarx Scan and Result Orchestration☆100Dec 26, 2025Updated 2 months ago
- Automated GitHub secret scanning with smart alerting & monitoring.☆30Jan 15, 2026Updated 2 months ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆98Feb 11, 2025Updated last year
- The constitution for a decentralized autonomous organization for accelerating clinical research through open-source software collaboratio…☆11Apr 21, 2022Updated 3 years ago
- Github action that installs SDKs served up by the AdoptOpenJDK API☆12May 8, 2024Updated last year
- Multithreaded exploit script for CVE-2022-36804 affecting BitBucket versions <8.3.1☆18Sep 19, 2022Updated 3 years ago
- boostsecurityio/lotp☆146Mar 3, 2026Updated 2 weeks ago
- Android SSL certificate validation vulnerability detection tools.☆20May 10, 2014Updated 11 years ago
- Supervisor trees for Go☆11Nov 4, 2017Updated 8 years ago
- agent.btz download MALWARE BINARY PROVIDED + POC video☆20Jul 11, 2021Updated 4 years ago
- A collection of skills, agents, commands, and workflows for security researchers. Compatible with Claude Code, Claude Desktop, OpenCode, …☆31Feb 25, 2026Updated 3 weeks ago
- The uncompromising Jupyter notebook formatter.☆14Jan 26, 2024Updated 2 years ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- Finds Documents On Cloud Assets Using grayhatwarfare API for short urls☆23Mar 2, 2022Updated 4 years ago
- Change code blocks to look more like a terminal☆10Jun 14, 2017Updated 8 years ago
- Checkmarx Scan Github Action☆29Jul 12, 2024Updated last year