Slonser / huiLinks
HTML Universal Identifier
☆65Updated last year
Alternatives and similar repositories for hui
Users that are interested in hui are comparing it to the libraries listed below
Sorting:
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆114Updated last year
- Awesome MXSS ??☆56Updated last year
- A python module to explore the object tree to extract paths to interesting objects in memory.☆102Updated 10 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆185Updated last year
- This repository is a one-stop shop for diving deep into the fascinating world of mXSS (mutations caused by browser quirks in HTML parsing…☆24Updated 9 months ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆219Updated 10 months ago
- ☆88Updated last year
- ☆32Updated 3 months ago
- Some tips for Bug Bounty using LibreOffice☆55Updated 9 months ago
- This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…☆120Updated last month
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆109Updated 5 months ago
- Fast exfiltration of text using only CSS and Ligatures☆83Updated 3 months ago
- ☆35Updated last year
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆149Updated 8 months ago
- WebSocket REPL for pentesters☆230Updated last year
- Searcher for cross-site leaks (XS-Leaks)☆83Updated 2 years ago
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆205Updated 6 months ago
- HTTP redirection service designed to help bypass SSRF filters. Integrated with Burp Suite.☆55Updated 5 months ago
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆223Updated 4 months ago
- Unicode characters that will translate a single character to multiple characters in domain names or TLD's☆49Updated last year
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆235Updated last week
- ☆90Updated 2 weeks ago
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆60Updated 5 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆164Updated last year
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆94Updated 11 months ago
- Scripts and examples for "From Day Zero to Zero Day" by Eugene Lim.☆188Updated last month
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆74Updated 6 months ago
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Updated 2 years ago
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆137Updated 6 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆66Updated last year