CanardMandarin / csp-bypass

Related projects ⓘ

Alternatives and complementary repositories for csp-bypass

• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆133Updated 2 months ago
• kunte0 / phar-jpg-polyglot
  Phar + JPG Polyglot generator and playground (CTF CODE)
  ☆72Updated 5 years ago
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆138Updated 3 months ago
• ambionics / wrapwrap
  Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
  ☆177Updated last month
• duc-nt / CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
  CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
  ☆270Updated last year
• BrunoHalltari / CTF-Writeups
  Here i will post my writeups :)
  ☆31Updated last year
• aszx87410 / ctf-writeups
  ctf writeups
  ☆62Updated 2 years ago
• zeyu2001 / My-CTF-Challenges
  Challenges I wrote for various CTF competitions
  ☆40Updated 4 months ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• msrkp / MXSS
  Awesome MXSS ??
  ☆45Updated last month
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆113Updated last year
• UncleJ4ck / CVE-2021-41091
  POC for CVE-2021-41091
  ☆65Updated last year
• voidz0r / CVE-2022-44268
  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
  ☆215Updated last year
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆113Updated 5 years ago
• Icare1337 / LibreOffice_Tips_Bug_Bounty
  Some tips for Bug Bounty using LibreOffice
  ☆33Updated this week
• FlorianPicca / JWT-Key-Recovery
  A tool that recovers the public key used to sign JWT tokens
  ☆107Updated last year
• p0dalirius / objectwalker
  A python module to explore the object tree to extract paths to interesting objects in memory.
  ☆79Updated 8 months ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆101Updated 7 months ago
• silentsignal / rsa_sign2n
  Deriving RSA public keys from message-signature pairs
  ☆270Updated 6 months ago
• s-3ntinel / imgjs_polygloter
  ☆22Updated 3 years ago
• aszx87410 / cdnjs-prototype-pollution
  Find all libraries on cdn.js that pollute your prototype
  ☆19Updated 2 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• strellic / my-ctf-challenges
  a repository of all the CTF challenges I've made for public events
  ☆50Updated last year
• CFandR-github / PHP-binary-bugs
  PHP binary bugs advisory
  ☆178Updated 2 years ago
• aszx87410 / beyond-xss
  Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
  ☆103Updated 8 months ago
• dicegang / dicectf-2023-challenges
  All challenges from DiceCTF 2023
  ☆69Updated last year
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆43Updated last week
• pruzko / hakuin
  A blazing fast Blind SQL Injection optimization and automation framework.
  ☆118Updated last week
• secnigma / CVE-2021-3560-Polkit-Privilege-Esclation
  ☆111Updated 2 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆59Updated 2 weeks ago