PortSwigger / javascript-security
A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates JavaScript resources against threat intelligence data.
☆9Updated 3 years ago
Alternatives and similar repositories for javascript-security:
Users that are interested in javascript-security are comparing it to the libraries listed below
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…☆12Updated 4 years ago
- Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets☆43Updated 2 years ago
- Phishing sites configured to work with Netlify form handling☆12Updated 5 years ago
- Multipurpose tool, currently aimed for HackTheBox Battlegrounds☆20Updated 4 years ago
- Burp Suite Pro extension☆10Updated 7 years ago
- A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates Java…☆24Updated 3 years ago
- ☆9Updated 2 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 3 years ago
- Configurable, Community driven, HTTP C2 Profile☆17Updated last week
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆19Updated 2 years ago
- ☆10Updated 3 years ago
- passat - password auditing tool. Does statistical analyses on large sets of cracked passwords.☆25Updated 3 years ago
- Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…☆42Updated last year
- A tool to parse, deduplicate, and query multiple port scans.☆57Updated last year
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago
- Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap☆36Updated 3 years ago
- PoC: Python package static and dynamic analysis to detect environment variable stealing☆10Updated 4 years ago
- ☆30Updated 11 months ago
- A PowerShell script that checks for dangerous ACLs on system hives and shadows☆28Updated 3 years ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 4 years ago
- Electron based screenshot scanner☆67Updated 2 years ago
- Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…☆15Updated last year
- Next Generation Phishing Tool For Internal / Red Teams☆35Updated 5 years ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆45Updated 3 years ago
- A command-line application to generate random user agent strings.☆17Updated 5 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- This is the Go Server that relays all HTTP requests and responses between clients.☆27Updated last year
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago