This tool allows to automatically test for Content Security Policy bypass payloads.
☆44Sep 4, 2024Updated last year
Alternatives and similar repositories for CSPass
Users that are interested in CSPass are comparing it to the libraries listed below
Sorting:
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!☆102Mar 30, 2025Updated 11 months ago
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆62Jun 27, 2025Updated 8 months ago
- ☆13Jun 27, 2023Updated 2 years ago
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆52Jul 8, 2024Updated last year
- Python script to check if there is any differences in responses of an application when the request comes from a search engine's crawler.☆24Oct 1, 2023Updated 2 years ago
- A python script to automatically dump files and source code of a Symfony server in debug mode.☆13Feb 11, 2025Updated last year
- A tool to extract and dump files of mercurial SCM exposed on a web server.☆13Jan 31, 2025Updated last year
- A python script to automatically generate shellcode payload from assembly files.☆13Nov 13, 2022Updated 3 years ago
- A multi-purpose, programming oriented Discord bot.☆16Jul 11, 2025Updated 7 months ago
- Memory mapping profiles for forensic analysis using volatility 2☆53Sep 23, 2022Updated 3 years ago
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆77Mar 16, 2024Updated last year
- A script to factorize integers with sagemath and factordb.☆12Feb 11, 2025Updated last year
- A webshell plugin and interactive shell for pentesting JoGet application.☆13May 19, 2022Updated 3 years ago
- Kubernetes exploitation tool☆363Updated this week
- CVE-2022-30780 - lighttpd remote denial of service☆17Mar 16, 2024Updated last year
- PP-finder Help you find gadget for prototype pollution exploitation☆189Aug 8, 2024Updated last year
- A complete table of results of types comparison in multiple languages☆36Sep 28, 2022Updated 3 years ago
- SNMPv3 Authentication Bruteforcer☆39Aug 12, 2021Updated 4 years ago
- Tooling for discovery & information gathering from OPC-UA servers☆25Jul 2, 2025Updated 8 months ago
- Some tips for Bug Bounty using LibreOffice☆56Feb 28, 2025Updated last year
- Generate email permutations from a name and verify if this email exist with different providers (gmail, duckduckgo, yahoo, yandex)☆41Feb 25, 2025Updated last year
- Quelques conseils autour des obligations légales, fiscales et juridique pour la pratique du Bug Bounty en France☆146Apr 21, 2025Updated 10 months ago
- A script to enumerate valid usernames based on the requests response times.☆22May 3, 2022Updated 3 years ago
- This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…☆132Feb 4, 2026Updated last month
- Decode the values of common Windows properties such as userAccountControl and sAMAccountType.☆24Oct 2, 2023Updated 2 years ago
- EPH is a tool which allows you to perform scans to find exposed administration panels that can lead to security vulnerabilities.☆19Jul 17, 2022Updated 3 years ago
- A web based OSINT ressource and tool☆184Apr 6, 2025Updated 10 months ago
- Active Directory Group Policy Preferences cpassword cracker/decrypter.☆24Apr 14, 2021Updated 4 years ago
- A cross platform library to write offensive and defensive security tools in Go☆131Dec 28, 2025Updated 2 months ago
- A python script to dump all the challenges locally of a CTFd-based Capture the Flag.☆166Nov 18, 2024Updated last year
- ☆59May 8, 2024Updated last year
- Rawsec's Cybersecurity Inventory cli. Search pentesting tools, resources, ctf, os.☆28Feb 1, 2026Updated last month
- Front page README of my GitHub profile☆34Updated this week
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆245Dec 8, 2025Updated 2 months ago
- Privescker - make life easier by dumping all your common Windows enum, privesc and post exploitation scripts and tools on to the box in o…☆45Apr 4, 2022Updated 3 years ago
- A multithreaded bruteforcer of argon2 hashes.☆42Jun 4, 2025Updated 9 months ago
- Network scanner☆44Dec 10, 2025Updated 2 months ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆36Jun 24, 2023Updated 2 years ago
- Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers☆83Mar 16, 2024Updated last year