BishopFox / json-interop-vuln-labsLinks
Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
☆204Updated 2 years ago
Alternatives and similar repositories for json-interop-vuln-labs
Users that are interested in json-interop-vuln-labs are comparing it to the libraries listed below
Sorting:
- ☆176Updated 4 years ago
- A simple SSRF-testing sheriff written in Go☆327Updated 7 months ago
- ☆194Updated 7 months ago
- ☆129Updated 4 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆301Updated 2 years ago
- A curated list of awesome browser security learning material.☆141Updated 2 years ago
- Predict Mongo ObjectIds☆135Updated 7 years ago
- Client Side Prototype Pollution Scanner☆519Updated 2 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆363Updated 9 months ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆290Updated 2 years ago
- ☆539Updated 2 months ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆192Updated 9 months ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆132Updated 4 years ago
- Unofficial documentation for the great tool Param Miner☆178Updated 2 years ago
- A tool to perform Sequential Import Chaining☆265Updated 5 years ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆50Updated last month
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆201Updated 6 years ago
- This repo contains all the injections mentioned in my talk and enumerators.☆126Updated last year
- Burp Suite Extension to monitor new scope☆198Updated 4 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆156Updated 2 years ago
- List of Trusted Types bypasses☆93Updated last year
- SSRF testing tool☆244Updated 2 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆80Updated 2 years ago
- Simple "postMessage logger" Chrome extension☆96Updated 5 years ago
- ☆152Updated last year
- PP-finder Help you find gadget for prototype pollution exploitation☆163Updated 9 months ago
- DNS rebinding toolkit☆253Updated 2 years ago
- Continuous monitoring for JavaScript files☆220Updated 5 years ago
- Content-Type Research☆620Updated last year