ajinabraham / Static-DOM-XSS-Scanner
Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the given directory and will list out all the possible sources and sinks that may cause DOM XSS. At the end of the scan, the tool will generate an HTML report.
☆119Updated 9 years ago
Alternatives and similar repositories for Static-DOM-XSS-Scanner:
Users that are interested in Static-DOM-XSS-Scanner are comparing it to the libraries listed below
- Central Repo for Burp extensions☆150Updated 3 years ago
- Automated Python Code Injection Tool☆86Updated 3 years ago
- ☆232Updated 9 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 6 years ago
- Script to test if a server is vulnerable to the JetLeak vulnerability☆144Updated 8 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆44Updated 11 years ago
- ☆77Updated 9 years ago
- Burp Suite plugin which implement PyJFuzz for fuzzing web application.☆56Updated 7 years ago
- ☆160Updated 7 years ago
- An interactive OOB XXE data exfiltration tool☆91Updated 7 years ago
- Burp Suite Extensions☆126Updated 11 years ago
- YSOSERIAL Integration with burp suite☆163Updated 2 years ago
- Duncan - Blind SQL injector skeleton☆56Updated 3 years ago
- ☆70Updated 7 years ago
- HTML5 WebSocket message fuzzer☆144Updated 6 years ago
- Image size issues plugin for Burp Suite☆93Updated 6 years ago
- CVE-2018-7600 - Drupal 7.x RCE☆71Updated 6 years ago
- Web Application Security☆125Updated 7 months ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆136Updated 3 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆47Updated 2 years ago
- Web Input Vector Extractor Teaser☆131Updated 3 years ago
- Hackerone disclosed report URL Aggregator☆29Updated 6 years ago
- Everything you need to exploit overly permissive crossdomain.xml files☆87Updated 10 years ago
- ☆46Updated 8 years ago
- Damn Small FI Scanner☆60Updated 5 years ago
- ☆84Updated 7 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 7 years ago