Nhoya / PastebinMarkdownXSSLinks
XSS in pastebin.com and reddit.com via unsanitized markdown output
☆87Updated 7 years ago
Alternatives and similar repositories for PastebinMarkdownXSS
Users that are interested in PastebinMarkdownXSS are comparing it to the libraries listed below
Sorting:
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 3 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 7 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 7 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- Everything you need to exploit overly permissive crossdomain.xml files☆87Updated 10 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 8 years ago
- A Python3 based single-file subdomain enumerator☆89Updated 5 years ago
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆45Updated 7 years ago
- Chrome Extension for XSS Hunter Payloads☆41Updated 8 years ago
- ☆71Updated 7 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆135Updated 8 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 7 years ago
- TLS Redirection☆120Updated 7 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated 2 years ago
- A very simple bridge for performing Flash HTTP requests with JavaScript☆80Updated 10 years ago
- Pillage a git repo found in an accessible web root☆61Updated 14 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆25Updated 8 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆43Updated 11 years ago
- A Firefox extension and WebSocket handler that checks S3/Google/Azure buckets while your browse.☆37Updated 5 years ago
- Chrome < 62 uxss exploit (CVE-2017-5124)☆161Updated 7 years ago
- ☆35Updated 6 months ago
- ☆34Updated 5 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 7 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 7 years ago
- Improved decoder for Burp Suite☆137Updated 3 years ago
- "What To" guide for finding vulnerabilities in sites.☆21Updated 8 years ago