Alternatives and similar repositories for confused:

Users that are interested in confused are comparing it to the libraries listed below

• filedescriptor / untrusted-types
  ☆675Updated 2 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆517Updated 2 years ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆373Updated 3 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆607Updated last year
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆623Updated 4 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆860Updated 3 years ago
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆863Updated 2 months ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆760Updated last year
• optiv / mobile-nuclei-templates
  ☆402Updated 3 years ago
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆967Updated 9 months ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆629Updated last year
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆319Updated 2 years ago
• trufflesecurity / Trufflehog-Chrome-Extension
  ☆383Updated 3 years ago
• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆611Updated 4 months ago
• RenwaX23 / XSSTRON
  Electron JS Browser To Find XSS Vulnerabilities Automatically
  ☆690Updated 4 years ago
• elttam / semgrep-rules
  ☆186Updated 4 months ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆300Updated 2 years ago
• robre / jsmon
  a javascript change monitoring tool for bugbounties
  ☆635Updated 8 months ago
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆801Updated 2 years ago
• neex / http2smugl
  ☆536Updated last week
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆364Updated 2 years ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆324Updated 5 months ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆311Updated last year
• hakluke / hakcheckurl
  Takes a list of URLs and returns their HTTP response codes
  ☆393Updated last year
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆946Updated 3 months ago
• harsh-bothra / Bheem
  ☆372Updated 3 years ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆969Updated last year
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆329Updated 3 years ago
• 0xacb / recollapse
  REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
  ☆984Updated last year
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆503Updated 2 years ago