BishopFox / json-interop-vuln-labsLinks
Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
☆209Updated 2 years ago
Alternatives and similar repositories for json-interop-vuln-labs
Users that are interested in json-interop-vuln-labs are comparing it to the libraries listed below
Sorting:
- ☆182Updated 2 months ago
- Client-Side Prototype Pollution Tools☆85Updated 3 years ago
- ☆129Updated 4 years ago
- This repo contains all the injections mentioned in my talk and enumerators.☆130Updated last year
- Predict Mongo ObjectIds☆145Updated 7 years ago
- Client Side Prototype Pollution Scanner☆520Updated 2 years ago
- research☆151Updated last year
- ☆553Updated 5 months ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆294Updated 2 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆164Updated 2 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆28Updated 4 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆302Updated 2 years ago
- DNS rebinding toolkit☆253Updated 2 years ago
- A simple SSRF-testing sheriff written in Go☆327Updated 9 months ago
- XS-Leaks Wiki☆168Updated 3 months ago
- Security Testing Scripts for JWT☆316Updated 3 years ago
- A tool to perform Sequential Import Chaining☆272Updated 5 years ago
- List of Trusted Types bypasses☆101Updated last year
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆43Updated last year
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆128Updated 2 years ago
- Workshop given at Hack in Paris 2019☆123Updated 2 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆374Updated last year
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Simple "postMessage logger" Chrome extension☆98Updated 5 years ago
- ☆170Updated 4 years ago
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆202Updated 6 years ago
- ☆199Updated 9 months ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆135Updated 4 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆261Updated 2 years ago
- A natural evolution of Burp Suite's Repeater tool☆199Updated last year