MalwareCube / enhanced-iframe-protection
A lightweight extension to automatically detect and provide verbose warnings for embedded iframe elements in order to protect against Browser-In-The-Browser (BITB) attacks.
☆42Updated 2 years ago
Alternatives and similar repositories for enhanced-iframe-protection:
Users that are interested in enhanced-iframe-protection are comparing it to the libraries listed below
- Wordlist to crack .zip-file password☆201Updated 2 years ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆105Updated 2 years ago
- Zed Attack Proxy Scripts for finding CVEs and Secrets.☆126Updated 2 years ago
- a smart DNS response-guided subdomain fuzzer☆149Updated 2 years ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆289Updated last week
- The vulnerable version of WordPress that is updated monthly.☆130Updated this week
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆231Updated last year
- Nuclei templates for honeypots detection.☆196Updated last year
- Spoof emails from any of the +2 Million domains using MailChannels (DEFCON 31 Talk)☆328Updated last year
- Try to find the origin IP of a webapp protected by Cloudflare.☆333Updated 5 months ago
- A suite for hunting suspicious targets, expose domains and phishing discovery☆336Updated 3 weeks ago
- ☆225Updated 2 years ago
- Search for sensitive data in Postman public library.☆194Updated 2 weeks ago
- OSINT tool to find informations about a github user (email2username, username2email, creation date ...)☆145Updated last year
- mx-takeover focuses DNS MX records and detects misconfigured MX records.☆344Updated last year
- Archive of Potential Insider Threats☆142Updated last year
- OSINT tool for discovering the real IP addresses of services which are behind Cloudflare but not properly locked down☆133Updated 8 months ago
- A vast collection of security tools and resources curated by the community.☆191Updated last month
- Opensource assets and vulnerability scanning tool☆159Updated 2 weeks ago
- CVE-2020-20093; 20094; 20095; 20096, 2022-28345 RTLO Injection URI Spoofing☆88Updated last year
- The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.☆121Updated 2 months ago
- Uncover the full name of a target on Linkedin.☆156Updated 2 years ago
- ☆119Updated 2 years ago
- TLDR 2 (TLD Records 2) is a continually updated DNS archive of zone transfer attempts against all existing TLD nameservers as well as the…☆60Updated this week
- Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator☆169Updated 3 years ago
- Repository with some necessary information for you to create your PenTest consultancy☆93Updated this week
- Domain Availability Checker☆142Updated 2 months ago
- A proof-of-concept for (CVE-2023-38840) that extracts plaintext master passwords from a locked Bitwarden vault.☆38Updated 10 months ago
- Programmatically extract saved passwords from Chromium based browsers.☆124Updated 2 years ago
- A scalable web app features LiveView authentication, user roles and permission system, and secure S3/Wasabi uploads. It calculates file h…☆84Updated last week