Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
☆21Aug 25, 2024Updated last year
Alternatives and similar repositories for orange-confusion-attacks
Users that are interested in orange-confusion-attacks are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PoC for leaking text nodes via CSS injection☆25Jul 27, 2024Updated last year
- Finds graphql queries in javascript files☆69May 18, 2024Updated 2 years ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆161Mar 31, 2025Updated last year
- Monitor your target continuously for new subdomains!☆25Mar 18, 2023Updated 3 years ago
- Extract Sensitive Keys, Secret, Token Or Interested thing from source☆52Jun 4, 2020Updated 5 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Nov 30, 2025Updated 5 months ago
- My custom created nuclei for SQLi, bugbounty, pentesting☆28May 7, 2025Updated last year
- Recon script for wildcard domain web scopes... (for use on synack red team)☆26Mar 31, 2023Updated 3 years ago
- ☆20Jun 26, 2024Updated last year
- Custom nuclei templates for bug hunting.....☆26May 30, 2024Updated last year
- The utility aims to clean up output generated by popular tools by calculating a hash based on specific JSON values to removing junk data.☆16Apr 5, 2024Updated 2 years ago
- ☆92Apr 29, 2024Updated 2 years ago
- Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.☆17Aug 23, 2024Updated last year
- Url scrapper or extractor from alienvault☆39Mar 1, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Get 10k subdomains in securitytrails using cookie without apikey.☆40Oct 23, 2025Updated 7 months ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆62Feb 22, 2025Updated last year
- A tool to migrate Burpsuite HTTP history to Caido☆38Apr 25, 2025Updated last year
- Extract uncompiled, uncompressed SPA code from Webpack source maps. A fork of @rarecoil's work.☆13Jul 11, 2024Updated last year
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆41Apr 18, 2024Updated 2 years ago
- This tool calculates tricky canonical huffman histogram for CVE-2023-4863.☆25Dec 20, 2023Updated 2 years ago
- SubOwner - A Simple tool check for subdomain takeovers.☆118Oct 18, 2024Updated last year
- List of Fresh DNS resolvers updates every 1 hour☆20May 8, 2026Updated 2 weeks ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- CLI tool for fetching URLs from Wayback Machine, Common Crawl, and VirusTotal.☆40Aug 21, 2025Updated 9 months ago
- A Series of Tweets☆15Jan 30, 2024Updated 2 years ago
- A really fast http prober.☆40Feb 1, 2024Updated 2 years ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆163May 15, 2026Updated last week
- Your favourite chest/terminal bursting buddy!☆18Nov 27, 2021Updated 4 years ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- Unauthorized Access to Metadata and User Data like CTF☆28Nov 30, 2024Updated last year
- 🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️☆228May 22, 2023Updated 3 years ago
- WordTally is a Python script designed to analyze text files and provide word frequency statistics.☆15Jul 3, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Get list of subsidiaries for a selected company☆32Dec 21, 2024Updated last year
- Use these VDP in Bug Hunting, These VDP are checked and verified by Bug Hunters☆20Aug 9, 2022Updated 3 years ago
- Advanced test for proxy & waf☆14Feb 10, 2026Updated 3 months ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆41Aug 12, 2023Updated 2 years ago
- Useful configurations for the DomLogger++ extension☆48Apr 7, 2026Updated last month
- ☆178Oct 15, 2024Updated last year
- 403 Bypasser With auto payload generation☆12Aug 8, 2024Updated last year