SoheilKhodayari / DOMClobberingView external linksLinks
DOM Clobbering Wiki, Browser Testing, and Payload Generation
☆60Dec 18, 2025Updated last month
Alternatives and similar repositories for DOMClobbering
Users that are interested in DOMClobbering are comparing it to the libraries listed below
Sorting:
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆57Oct 25, 2023Updated 2 years ago
- Generate DOM clobbering attack vectors for you.☆35Jun 3, 2025Updated 8 months ago
- Code for our 2023 IEEE S&P Paper "The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web"☆14Dec 12, 2024Updated last year
- Find all libraries on cdn.js that pollute your prototype☆19Sep 1, 2022Updated 3 years ago
- ☆17Nov 28, 2021Updated 4 years ago
- HTML Universal Identifier☆65Dec 15, 2024Updated last year
- public archive for corCTF 2022☆37Aug 16, 2022Updated 3 years ago
- HITCON 2023 x DEVCORE Wargame☆22Aug 24, 2023Updated 2 years ago
- Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security☆173Oct 27, 2025Updated 3 months ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆222Feb 6, 2025Updated last year
- CTF challenges I created 🚩☆76Dec 26, 2025Updated last month
- ☆31Jan 31, 2026Updated 2 weeks ago
- Pickle decompiler plugin for Radare2☆18Aug 6, 2023Updated 2 years ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆16Jul 17, 2024Updated last year
- ☆12Jan 10, 2024Updated 2 years ago
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆90Aug 25, 2025Updated 5 months ago
- Challenge repository for ACSC 2024☆13Apr 2, 2024Updated last year
- PWNable pyjail☆14Jan 13, 2025Updated last year
- Challenges and solutions for Maple CTF 2022.☆28Sep 15, 2022Updated 3 years ago
- WeCTF 2022 Source Code & Organizer's Writeup☆31Jun 12, 2022Updated 3 years ago
- A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.☆47Aug 31, 2025Updated 5 months ago
- ☆16Apr 12, 2023Updated 2 years ago
- Make your domain weird, but still works :/☆93Jan 4, 2023Updated 3 years ago
- King-of-the-Hill game for the 2nd International Cybersecurity Challenge @ San Diego, California USA☆14Aug 9, 2023Updated 2 years ago
- 試試你的好手氣☆41Jan 26, 2026Updated 2 weeks ago
- ctf writeups☆64Aug 21, 2022Updated 3 years ago
- A GDB+GEF-style debugger for unloading Python pickles☆70Jul 5, 2025Updated 7 months ago
- Chameleon Wordlists☆15Sep 13, 2022Updated 3 years ago
- Writing PHP with only 5 characters☆39Mar 20, 2025Updated 10 months ago
- Gather pagegraph data from all over the internet☆28Feb 4, 2026Updated last week
- SEETF 2023 Public Challenge Files, Sources, and Solutions☆18Jun 18, 2023Updated 2 years ago
- Blazing fast CTF platform from the future. This is a GitHub mirror of the GitLab repository (https://gitlab.com/Milkdrop/ctfx)☆16Oct 27, 2023Updated 2 years ago
- phpfuck: using only 5 different characters to write and execute php // (^.9)☆20Nov 26, 2021Updated 4 years ago
- Challenges and write-ups for GCC-CTF 2024☆18Mar 3, 2024Updated last year
- XS-Leak Browser Test Suite☆85Dec 19, 2023Updated 2 years ago
- Challenges I wrote for various CTF competitions☆45Jul 21, 2024Updated last year
- 🔍 A simple tool to obtain long lists of ips from domains using goroutines☆26Jul 29, 2019Updated 6 years ago
- ☆26Feb 24, 2022Updated 3 years ago
- Playground☆57Jan 22, 2026Updated 3 weeks ago