Sivnerof / Sources-And-Sinks-Cheatsheet
A cheatsheet for common JavaScript sources and sinks that lead to potential vulnerabilities.
☆18Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Sources-And-Sinks-Cheatsheet
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆49Updated last month
- Tool to parse subdomains from dmarc.live☆63Updated 7 months ago
- Finds graphql queries in javascript files☆57Updated 6 months ago
- Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!☆84Updated 9 months ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆133Updated this week
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆106Updated last week
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆84Updated last month
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆127Updated 9 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆107Updated 4 months ago
- This Tool To Test Machine Keys In View State☆55Updated last month
- ☆143Updated last month
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆88Updated 3 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆60Updated 4 months ago
- Collection's of Tech Talk that are presented by me :)☆95Updated last month
- ☆98Updated 4 months ago
- Chrome extension for automating CSPT discovery☆49Updated last month
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆128Updated 2 months ago
- A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.☆128Updated this week
- ☆57Updated 3 months ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆77Updated last year
- Monitoring the Cloud Landscape☆74Updated this week
- A simple plugin to export JS files from one or multiple targets☆40Updated last year
- Gather results of dorks across a number of search engines☆79Updated this week
- Self-hosted passive subdomain continous monitoring tool.☆155Updated 9 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆58Updated last month
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆54Updated last year
- ☆130Updated 2 weeks ago
- Create your own recon & vulnerability scanner with Trickest and GitHub☆49Updated last year
- CLI tool for fetching URLs from Wayback Machine, Common Crawl, and VirusTotal.☆31Updated last week
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆142Updated 3 months ago