All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)
☆305Mar 12, 2024Updated 2 years ago
Alternatives and similar repositories for Dependency-Confusion
Users that are interested in Dependency-Confusion are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆785Aug 19, 2024Updated last year
- Authorization-Nuclei-Templates☆39Sep 16, 2024Updated last year
- ☆754Jun 26, 2024Updated last year
- DepFine Is a tool to find the unregistered dependency based on dependency confusion valunerablility and lead to RCE☆28Nov 28, 2021Updated 4 years ago
- i will upload more templates here to share with the comunity.☆571Apr 17, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆918Dec 26, 2025Updated 5 months ago
- Asset inventory of over 800 public bug bounty programs.☆1,567Feb 14, 2025Updated last year
- A path-normalization pentesting tool.☆154Apr 2, 2026Updated last month
- ☆148Dec 23, 2022Updated 3 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆376Jul 25, 2023Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,515Jan 8, 2026Updated 4 months ago
- Collection of Facebook Bug Bounty Writeups☆801Mar 11, 2026Updated 2 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,655Mar 8, 2026Updated 2 months ago
- Simple tool to gather domains from crt.sh using the organization name☆102Dec 16, 2021Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Never forget where you inject.☆301Aug 15, 2025Updated 9 months ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,554Mar 8, 2026Updated 2 months ago
- This repo contains different variants of Bug Bounty & Security & Pentest & Tech related Articles☆56Jan 7, 2025Updated last year
- My Priv8 Nuclei Templates☆342May 12, 2024Updated 2 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆384May 19, 2023Updated 3 years ago
- Collection of scripts that I use while bug hunting☆47Jun 10, 2023Updated 2 years ago
- ☆250May 25, 2021Updated 5 years ago
- This Tool To Test Machine Keys In View State☆86Oct 11, 2024Updated last year
- Hidden parameters discovery suite☆2,065Sep 8, 2024Updated last year
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Automated Tool for Testing Header Based Blind SQL Injection☆324Jul 23, 2023Updated 2 years ago
- ☆99Mar 6, 2023Updated 3 years ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆443Apr 24, 2026Updated last month
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,344Aug 7, 2025Updated 9 months ago
- ☆811Jul 28, 2024Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆93May 2, 2024Updated 2 years ago
- De-clutter a list of URLs☆391Mar 8, 2026Updated 2 months ago
- ☆177Nov 20, 2025Updated 6 months ago
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Nov 15, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆59May 10, 2022Updated 4 years ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,243Aug 14, 2024Updated last year
- Real-world infosec wordlists, updated regularly☆1,752Updated this week
- A collection of awesome one-liner scripts especially for bug bounty tips.☆3,147Jul 29, 2024Updated last year
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆943Aug 24, 2023Updated 2 years ago
- 1337 Wordlists for Bug Bounty Hunting☆961May 17, 2026Updated last week
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆46Jun 3, 2024Updated last year