AntoineRondelet / uxss-vulnerabilities-researchLinks
Some research on UXSS vulnerabilities in web browsers
☆12Updated 7 years ago
Alternatives and similar repositories for uxss-vulnerabilities-research
Users that are interested in uxss-vulnerabilities-research are comparing it to the libraries listed below
Sorting:
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆12Updated 2 years ago
- ☆34Updated 3 years ago
- Simple WebSocket fuzzer☆33Updated 2 years ago
- CTF writeups☆30Updated 3 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆10Updated 5 years ago
- A small PoC for the recent RCE found in the Goahead Webserver prior to version 5.1.5.☆22Updated 3 years ago
- ☆15Updated 3 years ago
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆17Updated last year
- ☆16Updated 3 years ago
- Chrome extension to detect possible xsleaks☆12Updated 6 years ago
- Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data☆26Updated 3 years ago
- ☆23Updated 6 years ago
- Compiled dataset of Java deserialization CVEs☆61Updated 4 years ago
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆41Updated 6 months ago
- ☆12Updated 2 years ago
- ☆19Updated 3 months ago
- Proof of Concepts for unsafe deserialization in Ruby☆16Updated 8 months ago
- This repo contains the lazyFuzzer and the Report on the output from the same☆17Updated 5 years ago
- Burp extension to generate multi-step CSRF POC.☆30Updated 5 years ago
- XSS payloads for edge cases☆34Updated 6 years ago
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆30Updated last month
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆50Updated last year
- ☆50Updated 4 years ago
- Cisco RV110w UPnP stack overflow☆27Updated 3 years ago
- ☆15Updated 6 years ago
- My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition☆19Updated 5 years ago
- a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.☆16Updated 3 years ago
- Inti easter challenge poc☆18Updated 4 years ago
- Burp Suite extension for Radamsa-powered fuzzing with Intruder☆20Updated 3 years ago
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆19Updated 2 years ago