PostMessage extension
☆102Aug 28, 2019Updated 6 years ago
Alternatives and similar repositories for messpostage
Users that are interested in messpostage are comparing it to the libraries listed below
Sorting:
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆1,293Jan 26, 2024Updated 2 years ago
- Scraping creds using Github API and truffleHog☆11Dec 13, 2023Updated 2 years ago
- Expand urls into one url for each path depth☆31Jul 29, 2020Updated 5 years ago
- Burp extension to generate multi-step CSRF POC.☆31Sep 23, 2019Updated 6 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆303Feb 12, 2023Updated 3 years ago
- Simple "postMessage logger" Chrome extension☆103May 2, 2020Updated 5 years ago
- by Gary O'Leary-Steele | cloned from https://sentinel.appcheck-ng.com/static/pm/logger.html☆12Sep 16, 2019Updated 6 years ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆301May 22, 2023Updated 2 years ago
- websocket-connection-smuggler☆66Jan 22, 2020Updated 6 years ago
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆99Dec 30, 2019Updated 6 years ago
- List HackerOne private program assets☆154Jun 24, 2021Updated 4 years ago
- A BurpSuite plugin for BBRF☆25Nov 17, 2024Updated last year
- HTTP parameter discovery suite.☆93Apr 16, 2020Updated 5 years ago
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆42Nov 10, 2025Updated 3 months ago
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆87Apr 3, 2020Updated 5 years ago
- Simple tools to handle string and generate subdomain permutations☆15Jun 8, 2022Updated 3 years ago
- ☆44Apr 30, 2021Updated 4 years ago
- HTML source files demonstrating HTML5 postmessage vulnerabilities☆20Jul 26, 2020Updated 5 years ago
- A better version of my xssfinder tool - scans for different types of xss on a list of urls.☆187Aug 3, 2019Updated 6 years ago
- Tool to extract & validate google fcm server keys from apks☆29Jan 20, 2021Updated 5 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆113May 13, 2019Updated 6 years ago
- This little script for gathering chaos.projectdiscovery.io recon data in an organized way and finding the daily differences on it☆18Aug 9, 2020Updated 5 years ago
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆367Jul 23, 2022Updated 3 years ago
- Automatic tool for DNS rebinding-based SSRF attacks☆304Aug 21, 2020Updated 5 years ago
- find active domains from list of subdomains☆27May 30, 2020Updated 5 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- Client Side Prototype Pollution Scanner☆522Sep 17, 2022Updated 3 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆74Jan 4, 2021Updated 5 years ago
- Continuous monitoring for JavaScript files☆225Dec 29, 2019Updated 6 years ago
- ☆31Apr 6, 2021Updated 4 years ago
- a JS tool that let you take screenshot of many hosts.☆13Aug 2, 2019Updated 6 years ago
- a javascript change monitoring tool for bugbounties☆711Jul 31, 2024Updated last year
- Extract JavaScript files from burp suite project with ease.☆98Feb 19, 2022Updated 4 years ago
- Extension to log iframe and cross window communications.☆54Mar 14, 2023Updated 2 years ago
- Reverse engineers GQL Schema and generates template payloads☆46Apr 5, 2019Updated 6 years ago
- Broken Link Hijacking Burp Extension☆57Sep 13, 2019Updated 6 years ago
- View screenshots as a slideshow over http☆15Mar 13, 2020Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆265Nov 18, 2021Updated 4 years ago