PortSwigger / javascript-security
A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates JavaScript resources against threat intelligence data.
☆9Updated 3 years ago
Alternatives and similar repositories for javascript-security:
Users that are interested in javascript-security are comparing it to the libraries listed below
- ☆9Updated 2 years ago
- Burp Suite Pro extension☆10Updated 7 years ago
- ☆10Updated 3 years ago
- multiple password 'asher using Python’s hashlib☆14Updated 4 years ago
- Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets☆43Updated 2 years ago
- A compilation of network scanning strategies to find vulnerable devices☆73Updated 2 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- Log4Shell IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆18Updated 2 years ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆45Updated 3 years ago
- Burp Suite extension to discover assets from HTTP response.☆16Updated 3 years ago
- vulnerability reporting tool powered by vulners.com and wpvulndb.com☆13Updated 2 years ago
- REST API backend for Reconmap☆46Updated last week
- Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…☆12Updated 4 years ago
- AWS Security Checks☆37Updated 7 years ago
- PoC: Python package static and dynamic analysis to detect environment variable stealing☆10Updated 4 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆8Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆29Updated last year
- Simple scripts aiding penetration testing process☆13Updated 5 years ago
- ☆52Updated 4 months ago
- Simple python script to check against hypothetical JWT vulnerability.☆51Updated 4 years ago
- A tool to parse, deduplicate, and query multiple port scans.☆57Updated last year
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 3 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 4 years ago
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 4 years ago
- Cervantes plataform docker repository☆13Updated last week
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- Signatures for wraith used to detect secrets across various sources☆15Updated 2 years ago
- Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap☆36Updated 3 years ago