Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰
☆23Feb 27, 2024Updated 2 years ago
Alternatives and similar repositories for DomXssFinder
Users that are interested in DomXssFinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SSRF 绕过 Payload☆15Nov 12, 2020Updated 5 years ago
- ☆12Aug 18, 2021Updated 4 years ago
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆36Sep 23, 2022Updated 3 years ago
- Exploit for the unauthenticated file upload vulnerability in WordPress's Royal Elementor Addons and Templates plugin (< 1.3.79). CVE-ID: …☆10Nov 2, 2023Updated 2 years ago
- Many yaml scanner plugin parser [nuclei-template, xray-poc, ez-poc] - for Python☆14Mar 27, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 一个burpsuite插件,用于被动检测可能存在的XSS漏洞的请求。后续将完善对于可以请求的xss探针、xss攻击以及DOM型xss检测。☆16Dec 26, 2018Updated 7 years ago
- ☆11Jun 19, 2024Updated 2 years ago
- ☆10Apr 30, 2022Updated 4 years ago
- Pentesting Apache Tomcat 101☆14Apr 4, 2023Updated 3 years ago
- Do bug hunting with One-Line script and get bounty☆18Jul 30, 2023Updated 2 years ago
- WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk…☆14Oct 8, 2018Updated 7 years ago
- Frida Memory Dumper and Scanner for native Linux apps and Windows apps☆20Oct 18, 2022Updated 3 years ago
- Scan any HackerOne program with Nuclei☆14Sep 21, 2021Updated 4 years ago
- Permissionless pooling of NFT's into an ERC20.☆14Dec 22, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.☆25Mar 11, 2024Updated 2 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆32Oct 11, 2020Updated 5 years ago
- Burp Suite's extension to scan and crawl Single Page Applications☆107Apr 14, 2023Updated 3 years ago
- https://www.nu11secur1ty.com☆23Jun 21, 2026Updated 2 weeks ago
- Simple tool to check command injection in headers of http request☆18Aug 12, 2022Updated 3 years ago
- A framework and build automation tool to process exploits/payloads to evade antivirus and endpoint detection response products using reus…☆11Jan 16, 2024Updated 2 years ago
- 把jsp的cmdshell升级为冰蝎一句话☆10Sep 23, 2019Updated 6 years ago
- -☆11Nov 21, 2020Updated 5 years ago
- Fast subdomains enumeration tool for penetration testers☆14Feb 3, 2020Updated 6 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi☆45Jul 9, 2021Updated 4 years ago
- Terraform module for creating AWS CodeBuild Projects☆13Jul 1, 2021Updated 5 years ago
- wp content injection mass exploit Perl Script☆12Jul 11, 2017Updated 8 years ago
- ☆11Apr 8, 2024Updated 2 years ago
- ☆19Dec 30, 2023Updated 2 years ago
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Dec 2, 2024Updated last year
- BruteProxy.py framework for brute-forcing via HTTP/HTTPS requests with looping proxies.☆12Jan 12, 2026Updated 5 months ago
- Docker Image for Adobe Enterprise Manager☆12Jul 9, 2018Updated 7 years ago
- Advanced EDR Evasion via AI Telemetry Spoofing & WASM Sandboxing. Project Onyx is a PoC Red Team pipeline designed to demonstrate advance…☆112Jun 30, 2026Updated last week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Using Machine Learning to detect irrelevant and inappropriate text, entirely in the browser.☆15Sep 27, 2022Updated 3 years ago
- A userscript to assist in detecting cross-site scripting vulnerabilities☆26Jun 24, 2010Updated 16 years ago
- This script will install all the essential bug bounty tools and will find some basic vulns. I made this script for my daily hunting. The …☆45Mar 3, 2022Updated 4 years ago
- CVE-2025-68428 Proof of Concept☆24Jan 8, 2026Updated 5 months ago
- Materials for OWASP presentation on malicious JavaScript☆16Aug 30, 2010Updated 15 years ago
- Automate Blind SQL Injection with Python.☆22Aug 20, 2022Updated 3 years ago
- Apache OfBiz Auth Bypass Scanner for CVE-2023-51467☆12Dec 31, 2023Updated 2 years ago