visma-prodsec / confusedLinks
Tool to check for dependency confusion vulnerabilities in multiple package management systems
β774Updated last year
Alternatives and similar repositories for confused
Users that are interested in confused are comparing it to the libraries listed below
Sorting:
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.β403Updated 4 years ago
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β961Updated last year
- β694Updated 3 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)β770Updated 3 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devicesβ641Updated 6 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ941Updated 4 years ago
- Client Side Prototype Pollution Scannerβ523Updated 3 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β1,008Updated last year
- This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests aβ¦β348Updated 4 years ago
- Content-Type Researchβ650Updated 6 months ago
- β557Updated 9 months ago
- Fetches javascript file from a list of URLS or subdomains.β825Updated 5 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β746Updated 2 years ago
- a javascript change monitoring tool for bugbountiesβ705Updated last year
- β419Updated 4 years ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β1,035Updated last year
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technologyβ¦β794Updated 7 months ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlistsβ764Updated 2 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,033Updated 4 months ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-iconβ1,265Updated last year
- A collection of regexes for every possbile useβ437Updated 2 years ago
- Electron JS Browser To Find XSS Vulnerabilities Automaticallyβ746Updated 4 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. π¦β651Updated 4 months ago
- Security Testing Scripts for JWTβ326Updated 3 years ago
- β432Updated 4 years ago
- Accept URLs on stdin, replace all query string values with a user-supplied valueβ860Updated 3 years ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.β450Updated last month
- Go client to communicate with Chaos DB API.β809Updated 3 weeks ago
- A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.β739Updated last year
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutationsβ403Updated 3 years ago