BenjaminAster / invisible-javascript
Execute invisible JavaScript by abusing Hangul filler characters. Inspired by Martin Kleppe's INVISIBLE.js.
☆10Updated 3 months ago
Alternatives and similar repositories for invisible-javascript:
Users that are interested in invisible-javascript are comparing it to the libraries listed below
- A modified version of TomNomNom's anew, allowing for multiple files to be defined as parameters.☆13Updated last year
- Advanced test for proxy & waf☆12Updated 4 months ago
- [Confluence] CVE-2023-22527 realworld poc☆18Updated 11 months ago
- Burp extension used to snip any header from all the requests.☆22Updated last year
- Monitor your target continuously for new subdomains!☆26Updated last year
- convert secret patterns to gf compatible.☆39Updated last year
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆17Updated last year
- Python script implementing the favicon hash trick to find subdomains.☆27Updated last year
- SSH Private Key Looting Wordlists. A collection of wordlists to aid in locating or brute-forcing SSH private key file names.☆38Updated 10 months ago
- Search for sensitive data in Postman public library. Original work from https://github.com/cosad3s/postleaks☆26Updated last year
- Smart and efficient tool to automate open redirect detection at scale.☆8Updated 2 years ago
- Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)☆35Updated 2 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 2 years ago
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆24Updated 6 months ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆25Updated last year
- ☆16Updated last year
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆33Updated 2 years ago
- Find CVEs that don't have a Detectify modules.☆21Updated last year
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- DNS resolution tracing tool☆34Updated 3 years ago
- Repo for all my exploits/PoCs☆30Updated 4 months ago
- Saves pages to Wayback machine☆13Updated last month
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆31Updated 9 months ago
- 🔗 A curated list of awesome Caido related projects☆35Updated 3 months ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆19Updated 4 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆25Updated 5 months ago
- PoC for iTerm2 CVEs CVE-2024-38396 and CVE-2024-38395 which allow code execution☆20Updated 7 months ago
- Ffuf output browser☆38Updated last year
- Reversing Citrix Gateway for XSS☆14Updated last year