PalindromeLabs / awesome-websocket-security
Awesome information for WebSockets security research
☆244Updated 2 years ago
Related projects: ⓘ
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…☆227Updated 2 years ago
- ☆385Updated 3 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆524Updated 9 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆250Updated 2 months ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆305Updated 5 months ago
- Build your own reconnaissance system with Osmedeus Next Generation☆177Updated 3 months ago
- Prototype pollution scanner using headless chrome☆196Updated 2 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆258Updated last year
- Unofficial documentation for the great tool Param Miner☆169Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆287Updated last year
- A Security Tool for Enumerating WebSockets☆320Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆182Updated last month
- Web Application Security Testing Tools☆230Updated 6 months ago
- Black box fuzzer for web applications☆395Updated 2 months ago
- Smart context-based SSRF vulnerability scanner.☆323Updated 2 years ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆388Updated 3 weeks ago
- A collection of hacker tools using HackerOne's API☆248Updated 2 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆258Updated 11 months ago
- A curated list of awesome browser security learning material.☆128Updated last year
- A fast and minimal JS endpoint extractor☆302Updated 8 months ago
- Vulnerability Scan with Nuclei☆238Updated last month
- A Firefox Web Extension to improve the discovery of DOM XSS.☆249Updated 11 months ago
- This is one of the largest checklist available so far on the Internet.☆230Updated 2 years ago
- Web dashboard for Interactsh client☆188Updated this week
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆313Updated last year
- ☆143Updated last year
- Burp extension to create target specific and tailored wordlist from burp history.☆228Updated 2 years ago
- Find CVE PoCs on GitHub☆136Updated 11 months ago
- Automated learning of regexes for DNS discovery☆350Updated last year
- Fast and customizable vulnerability scanner For JIRA written in Python☆318Updated 7 months ago