Nhoya / PastebinMarkdownXSSLinks
XSS in pastebin.com and reddit.com via unsanitized markdown output
☆87Updated 7 years ago
Alternatives and similar repositories for PastebinMarkdownXSS
Users that are interested in PastebinMarkdownXSS are comparing it to the libraries listed below
Sorting:
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 3 years ago
- A Python3 based single-file subdomain enumerator☆89Updated 5 years ago
- Everything you need to exploit overly permissive crossdomain.xml files☆87Updated 10 years ago
- Exploit insecure crossdomain.xml files.☆26Updated 8 years ago
- Chrome Extension for XSS Hunter Payloads☆41Updated 8 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 7 years ago
- "What To" guide for finding vulnerabilities in sites.☆21Updated 8 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆135Updated 8 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆43Updated 12 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆90Updated 7 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 7 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 4 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 7 years ago
- Nodejs application intentionally vulnerable to SSRF☆42Updated 2 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 7 years ago
- ☆52Updated last year
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆45Updated 7 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 8 years ago
- A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.☆43Updated 5 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 5 years ago
- Pillage a git repo found in an accessible web root☆61Updated 14 years ago
- TLS Redirection☆120Updated 7 years ago
- ☆71Updated 7 years ago
- ☆34Updated 5 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆71Updated 4 years ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- Notes as I learn basic AWS penetration testing☆67Updated 6 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated 2 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 7 years ago