doyensec / confuserLinks
Dependency Confusion Security Testing Tool
☆49Updated 3 years ago
Alternatives and similar repositories for confuser
Users that are interested in confuser are comparing it to the libraries listed below
Sorting:
- ☆94Updated 3 years ago
- Let's check if your target is vulnerable for client side prototype pollution.☆65Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated last year
- ☆167Updated 3 years ago
- Detects request smuggling via HTTP/2 downgrades.☆93Updated 3 years ago
- ☆26Updated 2 years ago
- ☆56Updated 4 years ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆53Updated 11 months ago
- This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.☆37Updated 3 years ago
- Performing automated scan using Burp Suite Pro & Vmware Burp Rest API☆50Updated 2 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 5 months ago
- Stay within program scope☆37Updated 3 years ago
- List all public repositories for (valid) GitHub usernames☆76Updated last year
- A list of threat sinks used in the manual security source code review for application security☆72Updated 2 years ago
- ☆48Updated 4 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 11 months ago
- ☆83Updated last year
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.☆60Updated 2 years ago
- The commands and scripts I used in the Live Recon Village talks☆38Updated 4 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- ☆30Updated last year
- ☆75Updated last year
- Security Advisories☆34Updated last month
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆113Updated 3 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆88Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 3 months ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Updated 3 years ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago