BishopFox / json-interop-vuln-labsLinks
Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
☆210Updated 2 years ago
Alternatives and similar repositories for json-interop-vuln-labs
Users that are interested in json-interop-vuln-labs are comparing it to the libraries listed below
Sorting:
- ☆182Updated 4 months ago
- Predict Mongo ObjectIds☆145Updated 7 years ago
- Client Side Prototype Pollution Scanner☆521Updated 3 years ago
- ☆204Updated 11 months ago
- ☆130Updated 4 years ago
- ☆554Updated 7 months ago
- XS-Leaks Wiki☆169Updated 5 months ago
- A simple SSRF-testing sheriff written in Go☆332Updated 11 months ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆377Updated last year
- This repo contains all the injections mentioned in my talk and enumerators.☆130Updated last year
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆299Updated 2 years ago
- DNS rebinding toolkit☆255Updated 2 years ago
- research☆151Updated last year
- Client-Side Prototype Pollution Tools☆85Updated 4 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆299Updated 2 years ago
- A tool to perform Sequential Import Chaining☆282Updated 6 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆163Updated 2 years ago
- Security Testing Scripts for JWT☆322Updated 3 years ago
- Simple "postMessage logger" Chrome extension☆100Updated 5 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆43Updated 2 years ago
- List of Trusted Types bypasses☆102Updated last year
- Grammar-based HTTP/1 fuzzer with mutation ability☆257Updated last year
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆28Updated 4 years ago
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆128Updated 2 years ago
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆202Updated 6 years ago
- A natural evolution of Burp Suite's Repeater tool☆199Updated last year
- ☆685Updated 3 years ago
- Content-Type Research☆639Updated 4 months ago
- DOM XSS scanner for Single Page Applications☆414Updated last week