SoheilKhodayari / Basta-COSILinks
A framework for the detection of COSI vulnerabilities / XS-Leaks
☆13Updated 2 years ago
Alternatives and similar repositories for Basta-COSI
Users that are interested in Basta-COSI are comparing it to the libraries listed below
Sorting:
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆50Updated last year
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆31Updated 2 years ago
- This Burp extension helps you to find usages of postMessage and recvMessage☆15Updated 5 years ago
- ☆12Updated 2 years ago
- Lab that will help you to understand how type juggling vulnerability works.☆22Updated 4 years ago
- Service-Now Article Bruteforcer☆16Updated 5 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 3 months ago
- ☆17Updated last year
- OAuth 2.0 Dynamic Security Scanner☆33Updated 4 years ago
- ☆44Updated 5 years ago
- Labs from our workshop "Demystifying the server-side".☆17Updated 3 years ago
- XS-Leak Browser Test Suite☆81Updated last year
- Chrome extension to detect possible xsleaks☆12Updated 6 years ago
- CircleCI log and security configuration automations☆22Updated 4 years ago
- The commands and scripts I used in the Live Recon Village talks☆38Updated 4 years ago
- List of Trusted Types bypasses☆93Updated last year
- Python's handling of NaN is....interesting?broken?...this project illustrates the issue☆13Updated 3 years ago
- A Bash wrapper for radamsa that can be used to fuzz exported activities and deep links.☆51Updated 3 years ago
- Resources for Browser Security Research☆38Updated 2 years ago
- ☆45Updated 11 months ago
- Burp Extension to identify PII data☆21Updated 4 years ago
- Manager of third-party sources of Semgrep rules 🗂☆87Updated 11 months ago
- OmniCrawl is a web measurement tool that allows for recording of web requests and JavaScript browser API accesses on multiple platforms.☆26Updated last year
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- A repository of some useful grep patterns for tomnomnoms gf tool☆36Updated 4 years ago
- Testability Pattern Catalogs for SAST☆31Updated 4 months ago
- Dependency Confusion Security Testing Tool☆47Updated 2 years ago
- ☆20Updated 4 years ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆108Updated 6 months ago