SoheilKhodayari/DOMClobbering external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

SoheilKhodayari/DOMClobbering

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SoheilKhodayari/DOMClobbering)

Close

SoheilKhodayari / DOMClobberingView on GitHubMore

• External links
• Readme badge

DOM Clobbering Wiki, Browser Testing, and Payload Generation

☆61Dec 18, 2025Updated 3 months ago

Alternatives and similar repositories for DOMClobbering

Users that are interested in DOMClobbering are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• SoheilKhodayari / TheThing

  View on GitHub
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆57Oct 25, 2023Updated 2 years ago
• splitline / DOM-Clobber3r

  View on GitHub
  Generate DOM clobbering attack vectors for you.
  ☆35Jun 3, 2025Updated 10 months ago
• masatokinugawa / css-exfiltration-svg-font

  View on GitHub
  ☆17Nov 28, 2021Updated 4 years ago
• cispa / xs-observations

  View on GitHub
  Code for our 2023 IEEE S&P Paper "The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web"
  ☆14Dec 12, 2024Updated last year
• yeswehack / Dom-Explorer

  View on GitHub
  ☆40Sep 21, 2025Updated 6 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• aszx87410 / cdnjs-prototype-pollution

  View on GitHub
  Find all libraries on cdn.js that pollute your prototype
  ☆19Sep 1, 2022Updated 3 years ago
• mariussteffens / pmforce

  View on GitHub
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆18May 17, 2021Updated 4 years ago
• francisconeves97 / jxscout-caido

  View on GitHub
  Caido plugin for jxscout
  ☆15Nov 22, 2025Updated 4 months ago
• jackfromeast / TheHulk

  View on GitHub
  TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.
  ☆91Aug 25, 2025Updated 7 months ago
• aszx87410 / beyond-xss

  View on GitHub
  Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
  ☆178Mar 25, 2026Updated 3 weeks ago
• pixelindigo / yurascanner

  View on GitHub
  YuraScanner
  ☆76Feb 13, 2025Updated last year
• KTH-LangSec / server-side-prototype-pollution

  View on GitHub
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆229Feb 6, 2025Updated last year
• Crusaders-of-Rust / corCTF-2022-public-challenge-archive

  View on GitHub
  public archive for corCTF 2022
  ☆37Aug 16, 2022Updated 3 years ago
• ubcctf / maple-ctf-2022-public

  View on GitHub
  Challenges and solutions for Maple CTF 2022.
  ☆28Sep 15, 2022Updated 3 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• matanber / postMessage-tracker

  View on GitHub
  A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
  ☆16Jul 17, 2024Updated last year
• oshp / oshp-stats

  View on GitHub
  Stats about HTTP response security headers usage mentioned by the OSHP.
  ☆17Jan 25, 2026Updated 2 months ago
• arkark / my-ctf-challenges

  View on GitHub
  CTF challenges I created 🚩
  ☆80Mar 7, 2026Updated last month
• arxenix / phpfuck

  View on GitHub
  phpfuck: using only 5 different characters to write and execute php // (^.9)
  ☆20Nov 26, 2021Updated 4 years ago
• LavaMoat / LavaDome

  View on GitHub
  Secure DOM trees isolation and encapsulation leveraging ShadowDOM
  ☆36Feb 17, 2025Updated last year
• DEVCORE-Wargame / HITCON-2023

  View on GitHub
  HITCON 2023 x DEVCORE Wargame
  ☆22Aug 24, 2023Updated 2 years ago
• neploxaudit / extensions

  View on GitHub
  🗂 Knowledge Base on the Security of Chromium Extensions (https://extensions.neplox.security)
  ☆21Jan 24, 2025Updated last year
• doyensec / r2pickledec

  View on GitHub
  Pickle decompiler plugin for Radare2
  ☆18Aug 6, 2023Updated 2 years ago
• kevin-mizu / bot-ctf-template

  View on GitHub
  ☆31Jan 31, 2026Updated 2 months ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• eilvelia / ocaml-kdl

  View on GitHub
  OCaml implementation of the KDL Document Language
  ☆17Mar 29, 2026Updated 2 weeks ago
• GCC-ENSIBS / GCC-CTF-2024

  View on GitHub
  Challenges and write-ups for GCC-CTF 2024
  ☆19Mar 3, 2024Updated 2 years ago
• splitline / domain-obfuscator

  View on GitHub
  Make your domain weird, but still works :/
  ☆93Jan 4, 2023Updated 3 years ago
• jackfromeast / dom-clobbering-collection

  View on GitHub
  A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.
  ☆49Aug 31, 2025Updated 7 months ago
• SECCON / SECCON2023_final_CTF

  View on GitHub
  ☆12Jan 10, 2024Updated 2 years ago
• acsc-org / acsc-challenges-2024-public

  View on GitHub
  Challenge repository for ACSC 2024
  ☆13Apr 2, 2024Updated 2 years ago
• Nambers / python-audit_hook_head_finder

  View on GitHub
  PWNable pyjail
  ☆13Jan 13, 2025Updated last year
• b-viguier / PhpFk

  View on GitHub
  Writing PHP with only 5 characters
  ☆39Mar 5, 2026Updated last month
• SECCON / SECCON2022_final_CTF

  View on GitHub
  ☆16Apr 12, 2023Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• kumavis / react-compartment

  View on GitHub
  ☆11Dec 27, 2023Updated 2 years ago
• AdnaneKhan / ActionsTOCTOU

  View on GitHub
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆38Jan 25, 2026Updated 2 months ago
• splitline / Pickora

  View on GitHub
  A toy compiler that can convert Python scripts 🐍 to pickle bytecode 🥒
  ☆140Feb 20, 2023Updated 3 years ago
• Live-CTF / LiveCTF-DEFCON32

  View on GitHub
  LiveCTF challenges and infrastructure at DEFCON 32 CTF
  ☆23Aug 18, 2025Updated 7 months ago
• Milkdrop / CTFx

  View on GitHub
  Blazing fast CTF platform from the future. This is a GitHub mirror of the GitLab repository (https://gitlab.com/Milkdrop/ctfx)
  ☆16Oct 27, 2023Updated 2 years ago
• aslushnikov / been

  View on GitHub
  Pretty visualization of visited countries
  ☆23Jan 7, 2026Updated 3 months ago
• cedlemo / OCaml-GObject-Introspection

  View on GitHub
  OCaml bindings to GObject-Introspection based on OCaml-Ctypes.
  ☆17Mar 31, 2022Updated 4 years ago