PwnFunction / Next.js-Flat-Prototype-Pollution
Prototype Pollution using `flat` with Next.js
☆103Updated last week
Alternatives and similar repositories for Next.js-Flat-Prototype-Pollution:
Users that are interested in Next.js-Flat-Prototype-Pollution are comparing it to the libraries listed below
- Small example repo for looking into log4j CVE-2021-44228☆70Updated 3 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Subdomain Takeover tool with web UI☆56Updated 2 years ago
- Just some public notes that can be useful and i want let the world knows.☆86Updated 4 years ago
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆177Updated 4 years ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆287Updated last year
- a CTF web challenge about making screenshots☆226Updated 3 years ago
- An experimental server for the CSCG game "Maze"☆25Updated 4 years ago
- DOM XSS Game☆76Updated 3 years ago
- a Go code to detect leaks in JS files via regex patterns☆140Updated 3 years ago
- A Firefox Web Extension to improve the discovery of DOM XSS.☆272Updated 4 months ago
- Webapp to search tips on Twitter through #bugbountytips☆71Updated 2 years ago
- ☆128Updated 4 years ago
- grapX will iterate through the URLs and grep the endpoints with all possible extensions.☆57Updated 4 years ago
- No longer maintained. Timing attacks on a browsers cache to try to predict websites/subreddits that have been viewed☆11Updated 3 years ago
- Insecure Firebase | Bugbounty | Hacking Insecure Firbase☆86Updated 3 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.☆100Updated 3 years ago
- Example of a vulnerable NodeJS+Express+MySQL service☆20Updated 2 years ago
- A tool inspired by sqlmap specifically for MongoDB Injection☆30Updated 4 years ago
- Prototype Pollution in JavaScript☆76Updated 2 years ago
- WordPress Plugin Update Confusion☆66Updated 3 years ago
- WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…☆51Updated 6 months ago
- HackerOne Wallpapers☆73Updated 3 years ago
- Hidden parameters discovery suite☆223Updated 2 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- This repo includes my analysis of some public reports.☆57Updated 4 years ago
- One stop place for exploiting Jira instances in your proximity☆187Updated 10 months ago
- ☆56Updated 10 months ago
- Bucky (An automatic S3 bucket discovery tool)☆194Updated 3 years ago