Client-Side Prototype Pollution Tools
☆88Sep 21, 2021Updated 4 years ago
Alternatives and similar repositories for cspp-tools
Users that are interested in cspp-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Client Side Prototype Pollution Scanner☆525Sep 17, 2022Updated 3 years ago
- Simple tools to handle string and generate subdomain permutations☆15Jun 8, 2022Updated 3 years ago
- Prototype Pollution and useful Script Gadgets☆1,620Jan 27, 2024Updated 2 years ago
- ☆698Jul 4, 2022Updated 3 years ago
- Scanner for Cross-Site WebSocket Hijacking☆40Feb 19, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆520Jun 22, 2022Updated 3 years ago
- ☆563Mar 27, 2025Updated last year
- Detects request smuggling via HTTP/2 downgrades.☆94Jul 30, 2022Updated 3 years ago
- Tool for making it easy to collect dns results from the CLI☆40Aug 14, 2024Updated last year
- Collection of tools to interact with Intigriti website☆17Aug 10, 2024Updated last year
- A collection of scripts for bug-bounty related stuff☆39Sep 4, 2020Updated 5 years ago
- Adobe Experience Manager Vulnerability Scanner☆187May 22, 2023Updated 2 years ago
- Prototype Pollution exploits collection☆37Aug 8, 2021Updated 4 years ago
- research☆151Mar 21, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆158Nov 24, 2023Updated 2 years ago
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆411Dec 24, 2022Updated 3 years ago
- Content-Type Research☆664Jun 29, 2025Updated 10 months ago
- Searcher for cross-site leaks (XS-Leaks)☆83Dec 27, 2022Updated 3 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆394Aug 15, 2024Updated last year
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.☆133Jul 11, 2021Updated 4 years ago
- Subdomain enumeration statistics and wordlists from bugbounty scopes.☆34Mar 24, 2022Updated 4 years ago
- Prototype Pollution Scanner☆142Apr 11, 2021Updated 5 years ago
- ☆170Oct 4, 2021Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Let's check if your target is vulnerable for client side prototype pollution.☆65Jan 9, 2024Updated 2 years ago
- Dump all available paths and/or endpoints on WADL file.☆98Nov 24, 2025Updated 5 months ago
- Same Origin XSS challenge☆63Apr 7, 2022Updated 4 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆302Feb 12, 2023Updated 3 years ago
- Chrome extension to detect possible xsleaks☆12May 4, 2019Updated 7 years ago
- A high performance TCP SYN port scanner.☆317Mar 2, 2024Updated 2 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆662Aug 28, 2025Updated 8 months ago
- qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.☆30May 6, 2020Updated 6 years ago
- ☆17Dec 14, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.☆78Nov 5, 2022Updated 3 years ago
- WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…☆50Mar 19, 2026Updated 2 months ago
- ☆435Jun 1, 2021Updated 4 years ago
- A collection of utilities to simplify the creation of Burp Suite plugins☆22Dec 14, 2023Updated 2 years ago
- Fetch the details of assets hosted on AWS.☆88Dec 4, 2023Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆203May 15, 2026Updated last week
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆974Dec 31, 2021Updated 4 years ago