All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)
☆304Mar 12, 2024Updated 2 years ago
Alternatives and similar repositories for Dependency-Confusion
Users that are interested in Dependency-Confusion are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆786Aug 19, 2024Updated last year
- Authorization-Nuclei-Templates☆39Sep 16, 2024Updated last year
- ☆751Jun 26, 2024Updated 2 years ago
- DepFine Is a tool to find the unregistered dependency based on dependency confusion valunerablility and lead to RCE☆28Nov 28, 2021Updated 4 years ago
- i will upload more templates here to share with the comunity.☆571Apr 17, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆931Dec 26, 2025Updated 6 months ago
- Asset inventory of over 800 public bug bounty programs.☆1,588Feb 14, 2025Updated last year
- A path-normalization pentesting tool.☆152Apr 2, 2026Updated 3 months ago
- ☆151Dec 23, 2022Updated 3 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆378Jul 25, 2023Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,520Jan 8, 2026Updated 6 months ago
- Collection of Facebook Bug Bounty Writeups☆837Mar 11, 2026Updated 3 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,687Jun 11, 2026Updated 3 weeks ago
- Simple tool to gather domains from crt.sh using the organization name☆102Dec 16, 2021Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Never forget where you inject.☆302Aug 15, 2025Updated 10 months ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,574Mar 8, 2026Updated 4 months ago
- This repo contains different variants of Bug Bounty & Security & Pentest & Tech related Articles☆59Jan 7, 2025Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆386May 19, 2023Updated 3 years ago
- My Priv8 Nuclei Templates☆343May 12, 2024Updated 2 years ago
- Collection of scripts that I use while bug hunting☆47Jun 10, 2023Updated 3 years ago
- ☆251May 25, 2021Updated 5 years ago
- This Tool To Test Machine Keys In View State☆86Oct 11, 2024Updated last year
- Automated Tool for Testing Header Based Blind SQL Injection☆323Jul 23, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Hidden parameters discovery suite☆2,076Sep 8, 2024Updated last year
- ☆101Mar 6, 2023Updated 3 years ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆446Apr 24, 2026Updated 2 months ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,362Aug 7, 2025Updated 11 months ago
- ☆815Jul 28, 2024Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆104May 2, 2024Updated 2 years ago
- De-clutter a list of URLs☆389Mar 8, 2026Updated 4 months ago
- ☆178Nov 20, 2025Updated 7 months ago
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18May 30, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆59May 10, 2022Updated 4 years ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,276Aug 14, 2024Updated last year
- Real-world infosec wordlists, updated regularly☆1,769Updated this week
- A collection of awesome one-liner scripts especially for bug bounty tips.☆3,160Jul 29, 2024Updated last year
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆943Aug 24, 2023Updated 2 years ago
- 1337 Wordlists for Bug Bounty Hunting☆968Updated this week
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆46Jun 3, 2024Updated 2 years ago