DOM Clobbering Wiki, Browser Testing, and Payload Generation
☆61Dec 18, 2025Updated 2 months ago
Alternatives and similar repositories for DOMClobbering
Users that are interested in DOMClobbering are comparing it to the libraries listed below
Sorting:
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆57Oct 25, 2023Updated 2 years ago
- Generate DOM clobbering attack vectors for you.☆35Jun 3, 2025Updated 9 months ago
- Code for our 2023 IEEE S&P Paper "The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web"☆14Dec 12, 2024Updated last year
- Find all libraries on cdn.js that pollute your prototype☆19Sep 1, 2022Updated 3 years ago
- ☆40Sep 21, 2025Updated 5 months ago
- ☆17Nov 28, 2021Updated 4 years ago
- HTML Universal Identifier☆65Dec 15, 2024Updated last year
- HITCON 2023 x DEVCORE Wargame☆22Aug 24, 2023Updated 2 years ago
- Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security☆176Oct 27, 2025Updated 4 months ago
- CTF challenges I created 🚩☆75Dec 26, 2025Updated 2 months ago
- ☆31Jan 31, 2026Updated last month
- static sites for blog.orange.tw☆23Dec 31, 2025Updated 2 months ago
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆91Aug 25, 2025Updated 6 months ago
- ☆12Jan 10, 2024Updated 2 years ago
- ☆14Apr 25, 2025Updated 10 months ago
- Pickle decompiler plugin for Radare2☆18Aug 6, 2023Updated 2 years ago
- Challenge repository for ACSC 2024☆13Apr 2, 2024Updated last year
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆16Jul 17, 2024Updated last year
- Challenges and solutions for Maple CTF 2022.☆28Sep 15, 2022Updated 3 years ago
- PWNable pyjail☆13Jan 13, 2025Updated last year
- Monorepo for challenges, infra, and theming for UIUCTF 2024 (https://2024.uiuc.tf/)☆17Jul 14, 2024Updated last year
- WeCTF 2022 Source Code & Organizer's Writeup☆31Jun 12, 2022Updated 3 years ago
- A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.☆48Aug 31, 2025Updated 6 months ago
- ☆16Apr 12, 2023Updated 2 years ago
- Make your domain weird, but still works :/☆93Jan 4, 2023Updated 3 years ago
- 試試你的好手氣☆41Jan 26, 2026Updated last month
- ctf writeups☆62Aug 21, 2022Updated 3 years ago
- A GDB+GEF-style debugger for unloading Python pickles☆70Jul 5, 2025Updated 8 months ago
- Chameleon Wordlists☆15Sep 13, 2022Updated 3 years ago
- King-of-the-Hill game for the 2nd International Cybersecurity Challenge @ San Diego, California USA☆15Aug 9, 2023Updated 2 years ago
- CTF challenges I created☆38Jun 11, 2021Updated 4 years ago
- 🗂 Knowledge Base on the Security of Chromium Extensions (https://extensions.neplox.security)☆19Jan 24, 2025Updated last year
- Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale☆18May 17, 2021Updated 4 years ago
- Gather pagegraph data from all over the internet☆28Updated this week
- SEETF 2023 Public Challenge Files, Sources, and Solutions☆18Jun 18, 2023Updated 2 years ago
- Blazing fast CTF platform from the future. This is a GitHub mirror of the GitLab repository (https://gitlab.com/Milkdrop/ctfx)☆16Oct 27, 2023Updated 2 years ago
- Challenges and write-ups for GCC-CTF 2024☆19Mar 3, 2024Updated 2 years ago
- XS-Leak Browser Test Suite☆85Dec 19, 2023Updated 2 years ago
- Challenges I wrote for various CTF competitions☆44Jul 21, 2024Updated last year