RemmyNine / ConfusionalLinks
Python tool to generate crafted JWTs, exploiting the algorithm confusion vulnerability in JWT signature validation. Useful for security testing.
☆25Updated 8 months ago
Alternatives and similar repositories for Confusional
Users that are interested in Confusional are comparing it to the libraries listed below
Sorting:
- This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.☆73Updated last year
- Get some useful data from Clouds for your targets☆21Updated 3 months ago
- A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recogniz…☆31Updated 7 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆52Updated 3 weeks ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆36Updated last year
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆82Updated 6 months ago
- Nuclei template and information about the POC for CVE-2024-25600☆31Updated last year
- Looks for parameters in urls☆34Updated last year
- ☆47Updated 9 months ago
- CVE-2023-7028☆59Updated last year
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆37Updated last year
- A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.☆29Updated last month
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Updated last year
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆21Updated last year
- ☆29Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Updated last year
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆62Updated last year
- Reversing Citrix Gateway for XSS☆17Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆45Updated last year
- A utility for recursively traversing SSL/TLS certificates for collecting DNS names☆48Updated 2 years ago
- crawler for finding reflected parameters and reflecting special characters!☆20Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated last year
- Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )☆61Updated last year
- Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)☆47Updated last year
- Proof of Concept Exploit for CVE-2024-9464☆45Updated last year
- Get 10k subdomains in securitytrails using cookie without apikey.☆33Updated last month
- External recon toolkit☆53Updated 11 months ago
- POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.☆35Updated last year
- Authentication Bypass in GoAnywhere MFT☆64Updated last year