PortSwigger / url-cheatsheet-dataLinks
This is the data that powers the PortSwigger URL validation bypass cheat sheet.
☆54Updated last month
Alternatives and similar repositories for url-cheatsheet-data
Users that are interested in url-cheatsheet-data are comparing it to the libraries listed below
Sorting:
- ☆85Updated 4 months ago
- ☆23Updated 7 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆152Updated last year
- This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…☆102Updated last year
- Awesome MXSS ??☆54Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- Client-Side Prototype Pollution Tools☆85Updated 4 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆306Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆62Updated 4 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆105Updated 4 months ago
- ☆107Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆73Updated 4 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆148Updated 10 months ago
- Same Origin XSS challenge☆64Updated 3 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆180Updated last year
- ☆218Updated this week
- ☆64Updated 2 years ago
- Utility for creating ZipSlip archives☆79Updated 2 years ago
- ☆183Updated last year
- Burpsuite plugin for Interact.sh☆227Updated last year
- A collection of Server-Side Prototype Pollution gadgets and exploits☆211Updated 8 months ago
- ☆89Updated last year
- ☆169Updated 4 years ago
- Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations☆79Updated this week
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆76Updated 2 years ago
- Security Advisories☆34Updated last month
- Directory scans☆83Updated last year
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆28Updated 7 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆112Updated last year