🔪Browser logic vulnerabilities
☆701Jan 23, 2021Updated 5 years ago
Alternatives and similar repositories for uxss-db
Users that are interested in uxss-db are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of JavaScript engine CVEs with PoCs☆2,316Sep 3, 2019Updated 6 years ago
- My Chrome and Safari exploit code + write-up repo☆533Nov 5, 2021Updated 4 years ago
- awesome list of browser exploitation tutorials☆2,280Sep 18, 2023Updated 2 years ago
- DOM fuzzer☆1,774Nov 26, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,489Oct 12, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A Javascript library for browser exploitation☆898Feb 12, 2019Updated 7 years ago
- Browser's XSS Filter Bypass Cheat Sheet☆1,152May 6, 2017Updated 8 years ago
- A JavaScript Engine Fuzzer☆2,186Updated this week
- The Harvest of V8 regress.☆137Jul 18, 2020Updated 5 years ago
- A Collection of Chrome Sandbox Escape POCs/Exploits for learning☆864Jun 4, 2020Updated 5 years ago
- A tiny and cute URL fuzzer☆402Nov 10, 2022Updated 3 years ago
- poc or exp of android vulnerability☆407Dec 30, 2017Updated 8 years ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- Java-Web-Security - Sichere Webanwendungen mit Java entwickeln☆222Apr 20, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A collection of curated Java Deserialization Exploits☆592May 16, 2021Updated 4 years ago
- Code-Audit-Challenges☆990Nov 17, 2018Updated 7 years ago
- ✍️ A curated list of CVE PoCs.☆3,500Jan 4, 2022Updated 4 years ago
- The cheat sheet about Java Deserialization vulnerabilities☆3,175May 26, 2023Updated 2 years ago
- FileReader Exploit☆256Mar 20, 2019Updated 7 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆608May 17, 2019Updated 6 years ago
- Analysis of public exploits or my 1day exploits☆617Oct 1, 2020Updated 5 years ago
- Apache Solr Injection Research☆581Jan 28, 2020Updated 6 years ago
- OpenSource My ImageMagick Fuzzer ..☆296Jul 26, 2017Updated 8 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A collection of browser-based side channel attack vectors.☆757Mar 19, 2024Updated 2 years ago
- Fuzzing Browsers☆317Dec 5, 2022Updated 3 years ago
- Vulnerability Labs for security analysis☆1,171Mar 10, 2021Updated 5 years ago
- ☆34Nov 4, 2018Updated 7 years ago
- ☆463Oct 4, 2020Updated 5 years ago
- A Java serializer in JavaScript☆81May 21, 2018Updated 7 years ago
- ☆522Feb 22, 2020Updated 6 years ago
- ☆386Jan 12, 2024Updated 2 years ago
- A Pwn2Own exploit chain☆758Nov 8, 2018Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆614Mar 4, 2021Updated 5 years ago
- Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.☆625Jun 13, 2020Updated 5 years ago
- Collection of CTF Web challenges I made☆2,836Aug 31, 2025Updated 8 months ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- some vul☆790Apr 25, 2025Updated last year
- Proof-of-concept codes created as part of security research done by Google Security Team.☆1,877Mar 12, 2021Updated 5 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,148Apr 21, 2024Updated 2 years ago