Metnew / uxss-dbLinks
πͺBrowser logic vulnerabilities
β690Updated 4 years ago
Alternatives and similar repositories for uxss-db
Users that are interested in uxss-db are comparing it to the libraries listed below
Sorting:
- A tiny and cute URL fuzzerβ395Updated 2 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.β349Updated 2 years ago
- A tool for embedding XXE/XML exploits into different filetypesβ1,088Updated 6 months ago
- Content hijacking proof-of-concept using Flash, PDF and Silverlightβ384Updated 6 years ago
- Browser's XSS Filter Bypass Cheat Sheetβ1,132Updated 8 years ago
- SHELLING - a comprehensive OS command injection payload generatorβ445Updated 5 years ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniquesβ723Updated 6 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!β603Updated 6 years ago
- Some of my exploits.β586Updated 4 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scansβ576Updated 3 years ago
- A collection of curated Java Deserialization Exploitsβ593Updated 4 years ago
- My Chrome and Safari exploit code + write-up repoβ528Updated 3 years ago
- β265Updated 6 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilitiesβ784Updated 3 years ago
- β692Updated 6 months ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extrasβ425Updated 5 years ago
- exploit for ImageMagick's uninitialized memory disclosure in gif coderβ281Updated 7 years ago
- Apache Solr Injection Researchβ577Updated 5 years ago
- A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causβ¦β433Updated 2 months ago
- Cure53 Browser Security White Paperβ296Updated 7 years ago
- DNS Rebinding Exploitation Frameworkβ490Updated 4 years ago
- A mini webserver with FTP support for XXE payloadsβ331Updated last year
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)β291Updated 2 years ago
- β423Updated 8 years ago
- Create tar/zip archives that can exploit directory traversal vulnerabilitiesβ1,007Updated 4 years ago
- Lab for exploring SSRF vulnerabilitiesβ246Updated 4 years ago
- Simple DNS Rebinding Serviceβ663Updated 5 years ago
- Finds unknown classes of injection vulnerabilitiesβ687Updated last month
- SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.β465Updated 7 years ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.β315Updated 2 years ago