PortSwigger / xss-cheatsheet-dataLinks
This repository contains all the XSS cheatsheet data to allow contributions from the community.
☆442Updated last month
Alternatives and similar repositories for xss-cheatsheet-data
Users that are interested in xss-cheatsheet-data are comparing it to the libraries listed below
Sorting:
- Open Redirect Payloads☆635Updated 11 months ago
- HTTP file upload scanner for Burp Proxy☆413Updated 2 years ago
- Web App bug hunting☆570Updated 6 months ago
- ☆688Updated 3 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆740Updated 2 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆375Updated last year
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆402Updated 2 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆640Updated last year
- Finds unknown classes of injection vulnerabilities☆705Updated 5 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆905Updated 3 years ago
- ☆1,140Updated last week
- Client Side Prototype Pollution Scanner☆520Updated 3 years ago
- A small tool that extracts relative URLs from a file.☆754Updated 5 years ago
- ☆555Updated 6 months ago
- Repository for hosting my research papers☆513Updated last year
- Default signature for Jaeles Scanner☆324Updated 3 years ago
- DOM XSS scanner for Single Page Applications☆415Updated last week
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆536Updated 7 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆655Updated 6 years ago
- Security Testing Scripts for JWT☆318Updated 3 years ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆316Updated 2 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆548Updated 2 years ago
- HackerOne "in scope" domains☆477Updated this week
- A simple SSRF-testing sheriff written in Go☆331Updated 11 months ago
- Fetches javascript file from a list of URLS or subdomains.☆803Updated 2 months ago
- DNS rebinding toolkit☆255Updated 2 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆460Updated 6 years ago
- HTTP file upload scanner for Burp Proxy☆490Updated last year
- Automatically exported from code.google.com/p/domxsswiki☆541Updated 7 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,011Updated 4 years ago