visma-prodsec / confusedLinks
Tool to check for dependency confusion vulnerabilities in multiple package management systems
β731Updated 10 months ago
Alternatives and similar repositories for confused
Users that are interested in confused are comparing it to the libraries listed below
Sorting:
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β888Updated 6 months ago
- β682Updated 3 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.β383Updated 3 years ago
- Client Side Prototype Pollution Scannerβ518Updated 2 years ago
- Content-Type Researchβ624Updated 2 weeks ago
- β542Updated 3 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devicesβ627Updated last week
- β391Updated 3 years ago
- This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests aβ¦β337Updated 4 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ881Updated 3 years ago
- Fetches javascript file from a list of URLS or subdomains.β779Updated 2 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)β738Updated 3 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β981Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β654Updated last year
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-iconβ1,185Updated last year
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlistsβ737Updated 2 years ago
- a javascript change monitoring tool for bugbountiesβ655Updated 11 months ago
- A collection of regexes for every possbile useβ428Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β990Updated 6 months ago
- Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.β694Updated last year
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technologyβ¦β654Updated last month
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutationsβ387Updated 2 years ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.β512Updated 3 years ago
- Go client to communicate with Chaos DB API.β740Updated last week
- Electron JS Browser To Find XSS Vulnerabilities Automaticallyβ700Updated 4 years ago
- β413Updated 4 years ago
- A DNS Bruteforcing Wordlist Generatorβ359Updated 2 years ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.β316Updated last year
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. π¦β628Updated 2 years ago
- Automated learning of regexes for DNS discoveryβ371Updated 2 years ago