automatic tool for finding dependency confusion vulnerabilities
-
Updated
Mar 11, 2021 - Go
automatic tool for finding dependency confusion vulnerabilities
A Tool to check dependency confusion vulnerability
Collection of software package attacks using typosquatting and dependency confusion.
This package implements a test for Dependency Confusion using pip.
Project to handle requests from malicious PoC of Dependency Confusion or Similar Name packages. Also can be used to generate those packages (gem, npm, pip).
DependencyConfusion is tool used for finding any library used by the project that might be vulnerable to dependency confusion attack.
Simple bash dependency confusion checker (npm, python and ruby)
Demonstration of Dependency Confusion applied to .NET and NuGet
npm PoC packages
Yorkshire is your friend, yorkshire checks Python's requirements files for a possible dependency confusion.
A tool to investigate Dependency Confusion in Artifactory
DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
Dependency Confusion Security Testing Tool
Dependency Combobulator
Add a description, image, and links to the dependency-confusion topic page so that developers can more easily learn about it.
To associate your repository with the dependency-confusion topic, visit your repo's landing page and select "manage topics."