BishopFox / json-interop-vuln-labs

Related projects ⓘ

Alternatives and complementary repositories for json-interop-vuln-labs

• neex / 1u.ms
  ☆165Updated 3 years ago
• elttam / semgrep-rules
  ☆175Updated 2 weeks ago
• filedescriptor / Unicode-Mapping-on-Domain-names
  ☆128Updated 3 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆511Updated 2 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆316Updated 2 weeks ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆337Updated 3 months ago
• benso-io / posta
  🐙 Cross-document messaging security research tool powered by https://enso.security
  ☆281Updated last year
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆344Updated 2 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆150Updated last year
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆92Updated 4 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆540Updated 9 months ago
• securitum / research
  research
  ☆150Updated 8 months ago
• neex / http2smugl
  ☆528Updated 11 months ago
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆86Updated 7 months ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆125Updated 6 years ago
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆124Updated 4 years ago
• defparam / h1passets
  List HackerOne private program assets
  ☆149Updated 3 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆173Updated 2 years ago
• silentsignal / burp-piper
  Piper Burp Suite Extender plugin
  ☆115Updated 8 months ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆296Updated last year
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆121Updated 11 months ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆219Updated 4 years ago
• cezary-sec / awesome-browser-security
  A curated list of awesome browser security learning material.
  ☆130Updated 2 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆150Updated 3 months ago
• filedescriptor / untrusted-types
  ☆655Updated 2 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆394Updated 4 months ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆308Updated 2 years ago
• Cache-Money / chronorace
  ☆69Updated 2 years ago