PwnFunction / Next.js-Flat-Prototype-Pollution

Related projects ⓘ

Alternatives and complementary repositories for Next.js-Flat-Prototype-Pollution

• bhaveshk90 / Content-Security-Policy-CSP-Bypass-Techniques
  Content-Security-Policy (CSP) Bypass Techniques
  ☆47Updated 4 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• filedescriptor / Unicode-Mapping-on-Domain-names
  ☆128Updated 3 years ago
• ethicalhackingplayground / SubNuke
  Subdomain Takeover tool with web UI
  ☆56Updated last year
• 0xTeles / jsleak
  a Go code to detect leaks in JS files via regex patterns
  ☆138Updated 3 years ago
• y0k4i-1337 / clairvoyancex
  Obtain GraphQL API schema despite disabled introspection!
  ☆52Updated 3 years ago
• swoops / eval_villain
  A Firefox Web Extension to improve the discovery of DOM XSS.
  ☆262Updated last week
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆175Updated 3 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 4 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• KarimPwnz / dns-exfil
  Open a DNS server that knows no records but records every request. Used for DNS exfiltration.
  ☆68Updated 2 years ago
• zeroc00I / ReconNotes
  Just some public notes that can be useful and i want let the world knows.
  ☆86Updated 4 years ago
• PwnFunction / xss.pwnfunction.com
  DOM XSS Game
  ☆74Updated 2 years ago
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆145Updated 3 years ago
• TheWinRaRs / Writeups
  ☆34Updated 3 years ago
• iosiro / baserunner
  A tool for exploring Firebase datastores.
  ☆205Updated 2 years ago
• honoki / wilson-cloud-respwnder
  WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…
  ☆51Updated 2 months ago
• IppSec / ippsec.github.io
  ☆142Updated this week
• mufeedvh / l33tmario
  Mario the game but you rescue the princess by hacking.
  ☆22Updated 2 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆63Updated 2 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆151Updated 3 months ago
• CaptainFreak / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 3 years ago
• kabilan1290 / grapX
  grapX will iterate through the URLs and grep the endpoints with all possible extensions.
  ☆57Updated 3 years ago
• chbrown / unmap
  Unpack a JavaScript Source Map back into filesystem structure
  ☆174Updated 4 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆50Updated 4 years ago
• KingOfBugbounty / Discovery-Header-Bug-Bounty
  Discovery Header Bug Bounty to DoD
  ☆46Updated 3 years ago
• maverickNerd / BugForaging
  This repo includes my analysis of some public reports.
  ☆57Updated 4 years ago
• Kirill89 / prototype-pollution-explained
  Prototype Pollution in JavaScript
  ☆75Updated 2 years ago