Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
☆178Mar 25, 2026Updated 2 months ago
Alternatives and similar repositories for beyond-xss
Users that are interested in beyond-xss are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Generate DOM clobbering attack vectors for you.☆35Jun 3, 2025Updated last year
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆62Dec 18, 2025Updated 5 months ago
- Awesome MXSS ??☆57Sep 30, 2024Updated last year
- ☆33Jan 31, 2026Updated 4 months ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆234Feb 6, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Content-Type Research☆666Jun 29, 2025Updated 11 months ago
- Prototype Pollution and useful Script Gadgets☆1,624Jan 27, 2024Updated 2 years ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆444Apr 24, 2026Updated last month
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆59Feb 5, 2026Updated 4 months ago
- static sites for blog.orange.tw☆22Jun 1, 2026Updated last week
- Passively check for XSS character encodings☆20Mar 9, 2026Updated 3 months ago
- Research paper repository for "A Hand Structure-Based Mobile Authentication Solution to the Security-Reliability Trade-off" Paper from NJ…☆13Jul 30, 2023Updated 2 years ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆165May 15, 2026Updated 3 weeks ago
- Monorepo for challenges, infra, and theming for UIUCTF 2024 (https://2024.uiuc.tf/)☆17Jul 14, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- HITCON 2024 x DEVCORE Wargame☆31Aug 30, 2024Updated last year
- CodeQL zero to hero blog post series challenges☆172Sep 29, 2025Updated 8 months ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆1,318Jan 26, 2024Updated 2 years ago
- 10,000 H1 Disclosed Reports☆120May 10, 2024Updated 2 years ago
- nativeRasp that can hook native methods☆23Apr 24, 2023Updated 3 years ago
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆798Dec 9, 2025Updated 6 months ago
- 🏴 🏴 🏴☆106Aug 28, 2025Updated 9 months ago
- WeCTF 2022 Source Code & Organizer's Writeup☆33Jun 12, 2022Updated 3 years ago
- Subbdom API Client☆13Feb 7, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Quick research done on some bug bounty blogs! Check em out :)☆153Jan 19, 2025Updated last year
- XS-Leaks Wiki☆185Mar 13, 2026Updated 2 months ago
- A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.☆50Aug 31, 2025Updated 9 months ago
- My security presentations☆30Aug 21, 2023Updated 2 years ago
- some fun php exploits☆82Nov 12, 2024Updated last year
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆95Aug 25, 2025Updated 9 months ago
- Differential testing framework for HTTP implementations☆934May 28, 2026Updated last week
- Elevate your bookmarking game with my latest Bookmark Toolkit. Engineered for ethical bookmarking and enhanced web exploration, it delive…☆49Apr 5, 2025Updated last year
- A tool which helps identifying client-side prototype polluting libraries☆39May 1, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- public archive for corCTF 2022☆37Aug 16, 2022Updated 3 years ago
- ☆11May 25, 2024Updated 2 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆25Jun 18, 2025Updated 11 months ago
- ☆11Jun 8, 2022Updated 4 years ago
- Scripts and other stuff.☆133Mar 9, 2026Updated 3 months ago
- EvenBetterExtensions allows you to quicky install and keep updated Caido extensions.☆22Sep 26, 2024Updated last year
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆300Oct 5, 2024Updated last year