Alternatives and similar repositories for prototype-pollution-exploits

Users that are interested in prototype-pollution-exploits are comparing it to the libraries listed below

• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆85Updated 3 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆31Updated 2 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 3 years ago
• defparam / haptyc
  ☆94Updated 3 years ago
• w9w / bugbounty_changelogs
  ☆57Updated 6 months ago
• melbadry9 / SSLEnum
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆43Updated 6 months ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆92Updated 3 years ago
• kiranreddyrebel / PostMessage_Fuzz_Tool
  #BugBounty #BugBounty Tools #WebDeveloper Tool
  ☆38Updated 2 months ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆65Updated last year
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆48Updated 3 years ago
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 3 years ago
• jzheaux / spel-injection
  An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition
  ☆28Updated 7 years ago
• notnotnotveg / nuclei-custom-templates
  Additional nuclei templates
  ☆38Updated last year
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆72Updated 3 years ago
• assetnote / h2csmuggler
  ☆74Updated last year
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆30Updated 5 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 3 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• joefizz / autofindomain
  ☆24Updated 4 years ago
• sw33tLie / ugly-scripts
  A collection of scripts for bug-bounty related stuff
  ☆39Updated 4 years ago
• GoSecure / request-smuggling-workshop
  ☆26Updated 2 years ago
• bytehope / wwe
  ☆21Updated 4 months ago
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆34Updated 3 years ago
• 254Labs / awesome-bambdas
  A collection of Burp Suite Lambda Filters ~ Bambdas
  ☆28Updated 10 months ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated 2 years ago
• xxux11 / http-methods-discloser
  ☆45Updated 4 years ago
• emadshanab / Adobe-Experience-Manager
  ☆33Updated 4 years ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆112Updated 3 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• shoebpate1 / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 4 years ago