Kirill89 / prototype-pollution-explainedLinks
Prototype Pollution in JavaScript
☆75Updated 2 years ago
Alternatives and similar repositories for prototype-pollution-explained
Users that are interested in prototype-pollution-explained are comparing it to the libraries listed below
Sorting:
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- ☆76Updated 4 years ago
- Extract relative urls from a heap snapshot☆87Updated 4 years ago
- Bruteforce a JWT against a list of passwords☆76Updated 7 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- PostMessage extension☆96Updated 5 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 4 years ago
- ☆44Updated 4 years ago
- GraphQL security workshop labs☆111Updated last month
- List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)☆72Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆109Updated 3 years ago
- XSS Payload without Anything.☆105Updated 5 years ago
- Let's check if your target is vulnerable for client side prototype pollution.☆65Updated last year
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆204Updated 2 years ago
- Predict Mongo ObjectIds☆135Updated 7 years ago
- ☆40Updated 2 years ago
- Prototype Pollution exploits collection☆34Updated 3 years ago
- Misc bounty and vulndisc things☆84Updated 4 years ago
- A simple way of sending messages from the CLI output to your Slack with webhook.☆115Updated last year
- List of Trusted Types bypasses☆93Updated last year
- Finds the End-Points in JavaScript files☆92Updated 3 years ago
- A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.☆62Updated 2 years ago
- xss development frameworks, with the goal of making payload writing easier.☆143Updated 9 months ago
- Detectify Crowdsource Challenge☆69Updated 3 years ago
- WebSocket Connection Smuggler☆45Updated 2 years ago
- ☆40Updated last year
- Unofficial documentation for the great tool Param Miner☆178Updated 2 years ago
- Workshop given at Hack in Paris 2019☆122Updated last year
- ☆129Updated 4 years ago