EnDe / ReDoS
ReDoS - test for regular expression DoS in JavaScript
☆25Updated 3 years ago
Alternatives and similar repositories for ReDoS:
Users that are interested in ReDoS are comparing it to the libraries listed below
- Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.☆54Updated 10 years ago
- JSON API's Are Automatically Protected Against CSRF, And Google Almost Took It Away.☆35Updated 7 years ago
- The databases, API's and managers behind https://websecweekly.org☆50Updated 10 years ago
- ☆74Updated 12 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- SSRF Protection Library for PHP - http://safecurl.fin1te.net☆73Updated last year
- A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.☆42Updated 7 years ago
- This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks☆19Updated 10 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- Miscellaneous☆20Updated 6 years ago
- An SSRF-preventing wrapper around Python's requests library. Advocate is no longer maintained, please fork and rename if you would like t…☆93Updated last year
- A dashboard for interesting DOM tricks/techniques.☆36Updated 4 years ago
- Docker container to run PoisonTap☆15Updated 8 years ago
- A tiny chrome extension to record and replay your web application proof-of-concepts.☆20Updated 8 years ago
- ☆22Updated 9 years ago
- Unicode Security Guide☆120Updated 7 years ago
- A Scaleable and Asynchronous Framework for Testing Tools built on Kubernetes☆35Updated 7 years ago
- Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …☆112Updated 7 years ago
- a mass web screenshot tool for mapping web networks.☆24Updated 10 years ago
- An implementation of the hashcat rules engine in javascript☆48Updated 7 years ago
- A passive scanning tool for finding expired domain vulnerabilities while you browse.☆41Updated 6 years ago
- JavaScript parser and sandbox☆79Updated 8 years ago
- Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …☆73Updated 3 years ago
- Reflective/DOM XSS scanner built on casperJS☆81Updated 10 years ago
- Wax is a mediocre fuzzer I'm prototyping to test some ideas and get rid of others.☆18Updated 6 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- ☆198Updated 9 years ago
- Jaqen - Simple DNS rebinding☆73Updated 7 years ago
- A JavaScript clickjacking PoC generator☆23Updated 5 years ago