th3-j0k3r / DepConfuseLinks
tool for checking potential dependency confusion
☆37Updated 6 months ago
Alternatives and similar repositories for DepConfuse
Users that are interested in DepConfuse are comparing it to the libraries listed below
Sorting:
- Secrets scanner that understands code☆192Updated 2 years ago
- Grafana Labs bug bounty☆30Updated last year
- FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.☆60Updated 3 weeks ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆120Updated 2 years ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆156Updated 2 weeks ago
- Secrets scanner that understands code☆165Updated last month
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆151Updated 10 months ago
- HTTP redirection service designed to help bypass SSRF filters. Integrated with Burp Suite.☆62Updated 6 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Updated last year
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆235Updated 11 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆228Updated last week
- Docker toolbox for pentest of web based application.☆173Updated last week
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 4 years ago
- ☆225Updated last month
- ☆101Updated 2 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆141Updated 2 months ago
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆225Updated 6 months ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆314Updated 2 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆139Updated 2 years ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆83Updated 3 weeks ago
- The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…☆58Updated 3 weeks ago
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents☆67Updated 9 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆282Updated 4 months ago
- Blazing fast GraphQL discovery & fingerprinting toolbox.☆125Updated 2 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆165Updated 3 months ago
- ☆154Updated 2 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆106Updated last year
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆97Updated last month
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Updated 7 months ago
- 🛠️ Workflows created by the community☆86Updated last month