Kirill89 / prototype-pollution-exploits
Prototype Pollution exploits collection
☆30Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for prototype-pollution-exploits
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆30Updated last year
- A extension for collecting parameters☆25Updated 4 years ago
- Same Origin XSS challenge☆56Updated 2 years ago
- ☆55Updated 8 months ago
- ☆36Updated 4 years ago
- ☆92Updated 3 years ago
- Dependency Confusion Security Testing Tool☆39Updated 2 years ago
- Subdomain finder☆10Updated 2 years ago
- ☆15Updated 3 years ago
- ☆46Updated 3 years ago
- tool that generates bypasses for open redirects☆48Updated 2 years ago
- This repo contains solution for ctf challenges☆31Updated 9 months ago
- Burp Bounty profiles☆82Updated 2 years ago
- Make better use of the embedded browser that comes by default with Burp☆39Updated 10 months ago
- Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin☆42Updated last year
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …☆35Updated 3 months ago
- ☆24Updated 3 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- Additional nuclei templates☆34Updated last year
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆33Updated 2 years ago
- ☆33Updated 3 years ago
- ☆23Updated last year
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆41Updated last year
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆55Updated 5 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Updated 2 years ago
- This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.☆37Updated 2 years ago
- A collection of scripts for bug-bounty related stuff☆38Updated 4 years ago
- ☆78Updated 6 months ago
- Authenticated SSRF in Grafana☆77Updated 4 months ago