RUB-NDS / AutoLeak

Related projects ⓘ

Alternatives and complementary repositories for AutoLeak

• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆86Updated 7 months ago
• RUB-NDS / xsinator.com
  XS-Leak Browser Test Suite
  ☆73Updated 11 months ago
• cispa / xs-observations
  Code for our 2023 IEEE S&P Paper "The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web"
  ☆12Updated last month
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆44Updated last week
• lauritzh / auth-request-analyser
  This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attac…
  ☆27Updated last year
• TheGrandPew / Sanity
  ☆15Updated 3 years ago
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆40Updated last year
• BlackFan / ctfs
  CTF writeups
  ☆30Updated 2 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• google / bughunters
  ☆28Updated 3 weeks ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆151Updated 3 months ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• GitHubSecurityLab / ruby-unsafe-deserialization
  Proof of Concepts for unsafe deserialization in Ruby
  ☆14Updated last month
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆69Updated 3 years ago
• cezary-sec / awesome-browser-security
  A curated list of awesome browser security learning material.
  ☆130Updated 2 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆11Updated last year
• doyensec / protoburp
  Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages
  ☆36Updated last year
• psifertex / ctf-vs-the-real-world
  Informational Repository tracking times that real world bugs have come out of CTF challenges intentionally or otherwise
  ☆58Updated last year
• leakuidatorplusteam / artifacts
  The Paper Artifact Availability
  ☆19Updated 2 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆42Updated 2 years ago
• vin01 / poc-cve-2024-38396
  PoC for iTerm2 CVEs CVE-2024-38396 and CVE-2024-38395 which allow code execution
  ☆20Updated 5 months ago
• PortSwigger / request-minimizer
  ☆19Updated last year
• gehaxelt / phuzz
  ☆10Updated 2 weeks ago
• Kirill89 / prototype-pollution-exploits
  Prototype Pollution exploits collection
  ☆30Updated 3 years ago
• JavanXD / Raceocat
  Make exploiting race conditions in web applications highly efficient and ease-of-use.
  ☆23Updated 6 months ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆47Updated last year
• terjanq / XSS-Challenge-Solutions
  This repository is an interactive collection of my solutions to various XSS challenges.
  ☆11Updated 4 years ago
• federicodotta / protobuf-decoder
  A simple Google Protobuf Decoder for Burp
  ☆42Updated 2 years ago
• msrkp / electron-research
  Electron Research
  ☆70Updated 2 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆30Updated last year