GitHubSecurityLab / ruby-unsafe-deserialization

Related projects ⓘ

Alternatives and complementary repositories for ruby-unsafe-deserialization

• TheGrandPew / Sanity
  ☆15Updated 3 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆22Updated 3 months ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆67Updated last year
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆39Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆69Updated 3 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆11Updated last year
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆46Updated 5 months ago
• 1lastBr3ath / XSleaks
  Chrome extension to detect possible xsleaks
  ☆12Updated 5 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆59Updated 2 weeks ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 3 years ago
• defparam / haptyc
  ☆92Updated 3 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆55Updated 3 years ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆77Updated 4 months ago
• Kirill89 / prototype-pollution-exploits
  Prototype Pollution exploits collection
  ☆30Updated 3 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆30Updated last year
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆37Updated 5 months ago
• CaptainFreak / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆26Updated 3 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆30Updated 3 weeks ago
• neex / ghostinthepdf
  ☆158Updated 3 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 4 years ago
• PortSwigger / splitting-the-email-atom
  ☆65Updated last month
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆47Updated last year
• Rhynorater / rebindMultiA
  ☆56Updated last year
• 254Labs / awesome-bambdas
  A collection of Burp Suite Lambda Filters ~ Bambdas
  ☆22Updated last month
• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆52Updated this week