☆82Feb 8, 2026Updated last month
Alternatives and similar repositories for white-box-challenges
Users that are interested in white-box-challenges are comparing it to the libraries listed below
Sorting:
- ☆88Sep 20, 2024Updated last year
- ☆19Jan 13, 2025Updated last year
- A simple python script to download Voorivex Academy videos☆17May 17, 2024Updated last year
- Refined and Compatible version of Frans Rosen Post Message Tracker Extension☆44Nov 11, 2025Updated 3 months ago
- ☆23Feb 27, 2025Updated last year
- PoC for leaking text nodes via CSS injection☆25Jul 27, 2024Updated last year
- TLDFinder is a Python package that identifies valid top-level domains (TLDs) for a list of domains with wildcard characters in the TLD.☆24Jul 2, 2023Updated 2 years ago
- SPA Route Scanner is a Chrome extension that scans Single Page Applications (SPAs) to find and list all internal routes. Instantly discov…☆13Jul 31, 2025Updated 7 months ago
- Gathering All Nuclei Fuzzing Templates in a Single Repo.☆11Apr 23, 2024Updated last year
- ☆11Oct 25, 2021Updated 4 years ago
- Extractify extension is a Chrome extension designed for web security testing, enabling users to efficiently extract JavaScript files and …☆30Dec 10, 2024Updated last year
- A simplex kernel-based keylogger written for fun, not evil.☆16Apr 3, 2018Updated 7 years ago
- A Bind9 server for pentesters to use for Out-of-Band vulnerabilities☆26Dec 23, 2023Updated 2 years ago
- ☆12Mar 13, 2025Updated 11 months ago
- ☆17Feb 15, 2025Updated last year
- Cisco CallManager User Enumeration☆15Aug 16, 2022Updated 3 years ago
- ☆121Dec 26, 2023Updated 2 years ago
- PNG IDAT chunks ~ payload generator☆15Jun 14, 2016Updated 9 years ago
- Generate image payloads in JS to bypass filters☆39Mar 16, 2021Updated 4 years ago
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆773Dec 9, 2025Updated 2 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆161Jul 2, 2024Updated last year
- ☆20Jun 26, 2024Updated last year
- ☆20Sep 2, 2024Updated last year
- ☆46Nov 12, 2024Updated last year
- 🌐 Get Some Useful Info From Domain/IP/ASN 🔥☆19Sep 29, 2024Updated last year
- 10,000 H1 Disclosed Reports☆118May 10, 2024Updated last year
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆44Oct 27, 2024Updated last year
- A simple PHP application to learn SQL Injection detection and exploitation techniques.☆127Oct 18, 2022Updated 3 years ago
- Welcome to the 403 and 401 Bypass Techniques and Bug Bounty Tips repository! This repo is a collection of methods and strategies to bypas…☆19Dec 26, 2024Updated last year
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆286Oct 5, 2024Updated last year
- Rebuild of portspoof in GO with additional features.☆29Oct 24, 2025Updated 4 months ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆58Jul 20, 2023Updated 2 years ago
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆40Jun 13, 2025Updated 8 months ago
- ☆30Sep 5, 2025Updated 6 months ago
- Burp Suite extension that enhances Burp Active Scan by adding template engine specific SSTI payloads.☆24Feb 20, 2024Updated 2 years ago
- ☆49Oct 14, 2025Updated 4 months ago
- ☆25Jan 12, 2023Updated 3 years ago
- XXE Injection Payloads☆28Jul 30, 2019Updated 6 years ago
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc☆102Mar 5, 2025Updated last year