🔪Browser logic vulnerabilities
☆705Jan 23, 2021Updated 5 years ago
Alternatives and similar repositories for uxss-db
Users that are interested in uxss-db are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of JavaScript engine CVEs with PoCs☆2,319Sep 3, 2019Updated 6 years ago
- My Chrome and Safari exploit code + write-up repo☆533Nov 5, 2021Updated 4 years ago
- awesome list of browser exploitation tutorials☆2,286Sep 18, 2023Updated 2 years ago
- DOM fuzzer☆1,786Nov 26, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,507Oct 12, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A Javascript library for browser exploitation☆903Feb 12, 2019Updated 7 years ago
- Browser's XSS Filter Bypass Cheat Sheet☆1,155May 6, 2017Updated 9 years ago
- A JavaScript Engine Fuzzer☆2,215Jun 23, 2026Updated last week
- A Collection of Chrome Sandbox Escape POCs/Exploits for learning☆867Jun 4, 2020Updated 6 years ago
- The Harvest of V8 regress.☆136Jul 18, 2020Updated 5 years ago
- A tiny and cute URL fuzzer☆403Nov 10, 2022Updated 3 years ago
- poc or exp of android vulnerability☆407Dec 30, 2017Updated 8 years ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- Java-Web-Security - Sichere Webanwendungen mit Java entwickeln☆222Updated this week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A collection of curated Java Deserialization Exploits☆594May 16, 2021Updated 5 years ago
- Code-Audit-Challenges☆988Nov 17, 2018Updated 7 years ago
- ✍️ A curated list of CVE PoCs.☆3,512Jan 4, 2022Updated 4 years ago
- The cheat sheet about Java Deserialization vulnerabilities☆3,177May 26, 2023Updated 3 years ago
- FileReader Exploit☆255Mar 20, 2019Updated 7 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆608May 17, 2019Updated 7 years ago
- Analysis of public exploits or my 1day exploits☆614Oct 1, 2020Updated 5 years ago
- Apache Solr Injection Research☆579Jan 28, 2020Updated 6 years ago
- OpenSource My ImageMagick Fuzzer ..☆296Jul 26, 2017Updated 8 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A collection of browser-based side channel attack vectors.☆758Mar 19, 2024Updated 2 years ago
- Fuzzing Browsers☆319Dec 5, 2022Updated 3 years ago
- ☆462Oct 4, 2020Updated 5 years ago
- Vulnerability Labs for security analysis☆1,166Mar 10, 2021Updated 5 years ago
- ☆34Nov 4, 2018Updated 7 years ago
- A Java serializer in JavaScript☆81May 21, 2018Updated 8 years ago
- ☆520Feb 22, 2020Updated 6 years ago
- ☆385Jan 12, 2024Updated 2 years ago
- A Pwn2Own exploit chain☆758Nov 8, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆616Mar 4, 2021Updated 5 years ago
- Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.☆625Jun 13, 2020Updated 6 years ago
- Collection of CTF Web challenges I made☆2,854Aug 31, 2025Updated 10 months ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆519Jul 29, 2020Updated 5 years ago
- Proof-of-concept codes created as part of security research done by Google Security Team.☆1,879Mar 12, 2021Updated 5 years ago
- some vul☆796Apr 25, 2025Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,180Apr 21, 2024Updated 2 years ago