BrunoHalltari / CTF-Writeups

Related projects ⓘ

Alternatives and complementary repositories for CTF-Writeups

• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆132Updated 2 months ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• msrkp / MXSS
  Awesome MXSS ??
  ☆45Updated last month
• zeyu2001 / My-CTF-Challenges
  Challenges I wrote for various CTF competitions
  ☆39Updated 3 months ago
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆43Updated this week
• aszx87410 / beyond-xss
  Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
  ☆103Updated 7 months ago
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆85Updated 6 months ago
• CaptainFreak / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆26Updated 3 years ago
• aszx87410 / ctf-writeups
  ctf writeups
  ☆62Updated 2 years ago
• kunte0 / phar-jpg-polyglot
  Phar + JPG Polyglot generator and playground (CTF CODE)
  ☆72Updated 5 years ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆29Updated 2 weeks ago
• tree-chtsec / oswe-tools
  ☆34Updated last year
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆137Updated 3 months ago
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆60Updated 3 months ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆49Updated this week
• CanardMandarin / csp-bypass
  Need any help bypassing CSP ?
  ☆24Updated 3 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆100Updated 7 months ago
• PortSwigger / splitting-the-email-atom
  ☆65Updated last month
• aszx87410 / cdnjs-prototype-pollution
  Find all libraries on cdn.js that pollute your prototype
  ☆19Updated 2 years ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆115Updated last week
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆59Updated last year
• hackvertor / blind-css-exfiltration
  ☆87Updated 11 months ago
• PortSwigger / serialization-examples
  ☆39Updated 11 months ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• neex / ghostinthepdf
  ☆158Updated 3 years ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆112Updated 5 years ago
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆40Updated last year