0xSobky / XSSBuster
XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!
☆38Updated 6 years ago
Alternatives and similar repositories for XSSBuster:
Users that are interested in XSSBuster are comparing it to the libraries listed below
- PHP tool to test XSS☆22Updated 5 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- Burp Intruder File Payload Generator☆18Updated 5 years ago
- Web Application Security related tools. Includes backdoors, proof of concepts and tricks☆37Updated 10 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- Alpha version code of Recon UI☆14Updated 7 years ago
- Pentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and a…☆31Updated last year
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 7 years ago
- WebApp for BugBounty Hunters☆14Updated 7 years ago
- Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords☆51Updated 7 years ago
- Enumerate subdomains through Virustotal☆32Updated 5 years ago
- PDF report generator for basic recon☆9Updated 6 years ago
- a collection of payloads for common webapps☆73Updated 11 years ago
- A wrap up script to auto perform nmap scan from the result of dnsrecon, then output result with filename as hostname and ip☆11Updated 6 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 11 years ago
- Just a silly recon tool that uses data from SSL Certificates to find potential host names☆30Updated last year
- Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.☆11Updated 3 years ago
- patched information leak leaking full names associated with some email addresses including but not limited to gmail☆36Updated 4 years ago
- Scans crossdomain.xml policies for expired domain names.☆25Updated 9 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆37Updated 6 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- This application is developed to test the race condition vulnerability in the web application. We have discussed about this vulnerability…☆14Updated 8 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- This is a beginner level session to train you into using SSH more effectively. While pentesters may benefit (especially if they are plan…☆15Updated 6 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 6 years ago
- ☆13Updated 2 years ago
- Clickjacking PoC Generator☆35Updated 4 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago