GoSecure / unicode-pentester-cheatsheet
An easy to navigate list of unicode characters that have risky transformations 💥
☆25Updated 3 years ago
Alternatives and similar repositories for unicode-pentester-cheatsheet:
Users that are interested in unicode-pentester-cheatsheet are comparing it to the libraries listed below
- ☆15Updated 3 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 3 years ago
- WebSocket Connection Smuggler☆45Updated 2 years ago
- Query various sources for CVE proof-of-concepts☆51Updated last year
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆22Updated 3 years ago
- Tool to extract & validate google fcm server keys from apks☆28Updated 4 years ago
- Parallelized enumeration tool for red team engagements and bug bounty programs.☆18Updated 3 years ago
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 3 years ago
- HTTP requests of FrontPage expolit☆25Updated 11 years ago
- Return domains in CSP headers in http response☆15Updated 3 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆47Updated 9 months ago
- ☆30Updated 11 months ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- ☆21Updated 7 years ago
- Validate proxies for specific domain☆35Updated 3 years ago
- an Evil Java RMI Registry.☆49Updated 2 years ago
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆59Updated 4 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated 3 weeks ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆12Updated 4 years ago
- ☆25Updated last week
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆9Updated 2 years ago
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆12Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 7 months ago
- List of fresh and validated DNS resolvers updated every 12h.☆22Updated this week
- A companion repo to accompany detailed guides and YouTube content to allow users to follow along☆13Updated 4 years ago
- A multi-threaded password sprayer based on Medusa, built for distributed spraying.☆37Updated 3 years ago
- Automated compromise detection of the world's most popular packages☆15Updated last year
- Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.☆13Updated 3 years ago