The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilities.
☆67Apr 29, 2026Updated 2 months ago
Alternatives and similar repositories for template-injection-playground
Users that are interested in template-injection-playground are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆116Apr 27, 2026Updated 2 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆37Feb 9, 2024Updated 2 years ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆417Apr 27, 2026Updated 2 months ago
- Finding and classifying ROP gadgets from rp++ output file with some regex and a CLI.☆32Jun 12, 2026Updated 3 weeks ago
- A Firefox Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆28Dec 9, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Grepable cheat sheets for pentesting. Each sheet one tool.☆11Oct 15, 2020Updated 5 years ago
- DursVuln - Nmap Scripting Engine (NSE)☆22Jul 16, 2025Updated 11 months ago
- Add your configs for tmux☆18Apr 3, 2022Updated 4 years ago
- burp suite插件☆14Jul 9, 2023Updated 3 years ago
- Identify virtual hosts by similarity comparison☆141Mar 18, 2026Updated 3 months ago
- This repository is for the Testing ASP.NET ViewState with YSoNet (YSoSerial.NET) workshop.☆24Dec 17, 2025Updated 6 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆76Jun 12, 2025Updated last year
- Advanced test for proxy & waf☆14Feb 10, 2026Updated 4 months ago
- Headless web crawler for bugbounty and penetration-testing/redteaming☆40Mar 25, 2024Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow☆18Sep 10, 2024Updated last year
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆27Jan 6, 2025Updated last year
- CTF kernel exploitation notes, PoCs, exploits, and writeups.☆336Jun 12, 2026Updated 3 weeks ago
- Webshell agent in aspx and php☆28Dec 11, 2025Updated 6 months ago
- retrieve comprehensive information about a website, including its title, last modified date, DNS information, subdomains, firewall names,…☆18Mar 24, 2024Updated 2 years ago
- VulnReach builds on standard SCA output by adding reachability context - proving through static analysis, taint tracking, and live runtim…☆21Jun 6, 2026Updated last month
- Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.☆68Nov 12, 2025Updated 7 months ago
- ssh user enumeration☆13Mar 21, 2023Updated 3 years ago
- SQLi Hunter is a tool designed to find potential SQL injection vulnerabilities by fetching URLs from the Wayback Machine and checking for…☆17Jun 4, 2025Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- jxscout superpowers JavaScript analysis for security researchers☆467Apr 12, 2026Updated 2 months ago
- Curated Collection of Popular Community Rules for Semgrep☆21Dec 27, 2023Updated 2 years ago
- A python-based vulnerability scanner designed to identify open redirect flaws in website applications.☆26Mar 15, 2026Updated 3 months ago
- convert secret patterns to gf compatible.☆38Feb 11, 2023Updated 3 years ago
- ☆16Apr 17, 2025Updated last year
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆300Oct 5, 2024Updated last year
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18May 30, 2026Updated last month
- Welcome to the secure code review snippets for secure code review snippets! This repository aims to provide developers with valuable exam…☆14Feb 19, 2025Updated last year
- ☆19Sep 18, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Tools/scripts I used/developed during the EXP-301 course.☆27May 17, 2022Updated 4 years ago
- Security Blogs - A simple aggregator for security news/blog☆29Jun 25, 2026Updated 2 weeks ago
- Metabase Pre-auth RCE☆12Aug 3, 2023Updated 2 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆57Nov 20, 2024Updated last year
- ☆19Feb 10, 2024Updated 2 years ago
- Clear and obvious name of the exploitation technique can create a false sense of familiarity, even if its true potential was never resear…☆116Feb 22, 2026Updated 4 months ago
- Distributed Nmap, wrapper around Nmap to allow distributed network enumeration.☆20May 15, 2025Updated last year