IAIK / jstemplate
JavaScript Template Attack proof-of-concept implementation
☆53Updated 6 years ago
Related projects: ⓘ
- Google Chrome extension implementing JavaScript Zero☆148Updated 6 years ago
- Safari local file reader☆122Updated 5 years ago
- Filet-O-Firewall Vulnerability PoC☆60Updated 9 years ago
- Miscellaneous☆20Updated 6 years ago
- ☆88Updated 7 years ago
- A fuzzing library in JavaScript. ✨☆116Updated 7 months ago
- X41 Browser Security White Paper - Tools and PoCs☆184Updated 6 years ago
- New TLS Padding Oracles☆123Updated last year
- Public crawler and data from Tripwire: Inferring Internet Site Compromise☆96Updated 6 years ago
- A list of ReDoS vulnerabilities in npm modules found by the Software Lab at TU Darmstadt. For each vulnerability, there is a proof-of-con…☆58Updated 6 years ago
- Extended Differential Fuzzing Framework☆320Updated 6 years ago
- A platform to study browser fingerprinting☆72Updated last year
- ☆241Updated 5 years ago
- Git manager for pentesters☆106Updated 8 years ago
- Small DNS Recon utility, allows you to obtain some useful info about NS-servers placed behind relays, firewalls, etc.☆22Updated 7 years ago
- A visual fuzzer written in NodeJS to find Zalgo characters☆52Updated 6 years ago
- JavaScript parser and sandbox☆78Updated 8 years ago
- Artifact release for our IEEE Symposium on Security and Privacy 2021 paper entitled Fingerprinting the Fingerprinters: Learning to Detect…☆65Updated 3 years ago
- Chrome < 62 uxss exploit (CVE-2017-5124)☆161Updated 6 years ago
- Webkit uxss exploit (CVE-2017-7089)☆64Updated 6 years ago
- Signature-free approach library to detect injection and commanding attacks☆85Updated 2 years ago
- Turn your Burp suite into headless active web application vulnerability scanner☆154Updated 6 years ago
- Time Trial - A tool for performing feasibility analyses of timing attacks☆83Updated 10 years ago
- Proof of concept of LibreOffice remote arbitrary file disclosure vulnerability☆94Updated 6 years ago
- An AFL-inspired genetic fuzz tester for JavaScript☆128Updated 2 years ago
- Packaging audit toolkit using vulners.com vulnerability database☆19Updated 6 years ago
- Another web fuzzer written in NodeJS☆59Updated 6 years ago
- Demos of and walkthroughs on in-browser fuzzing using WebAssembly☆122Updated 4 years ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆33Updated 8 years ago
- Asynchronous HTTP pipelining directory buster☆22Updated 4 years ago