Alternatives and similar repositories for beyond-xss

Users that are interested in beyond-xss are comparing it to the libraries listed below

• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆190Updated 4 months ago
• hackvertor / blind-css-exfiltration
  ☆110Updated last year
• msrkp / MXSS
  Awesome MXSS ??
  ☆52Updated 8 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆141Updated 6 months ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆141Updated 11 months ago
• BrunoHalltari / CTF-Writeups
  Here i will post my writeups :)
  ☆32Updated 2 years ago
• CanardMandarin / csp-bypass
  Need any help bypassing CSP ?
  ☆29Updated 4 years ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆50Updated last month
• ngalongc / AuthzAI
  ☆177Updated 8 months ago
• kevin-mizu / bot-ctf-template
  ☆26Updated last month
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆164Updated 10 months ago
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆53Updated 2 months ago
• renniepak / CSPBypass
  ☆306Updated last week
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆124Updated 2 months ago
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆181Updated last month
• PortSwigger / splitting-the-email-atom
  ☆81Updated 8 months ago
• SonarSource / mxss-cheatsheet
  This repository is a one-stop shop for diving deep into the fascinating world of mXSS (mutations caused by browser quirks in HTML parsing…
  ☆23Updated 4 months ago
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆169Updated 8 months ago
• sametsahinnet / jsscm
  JSSCM detects expired domains for Stored XSS exploitation during browsing.
  ☆50Updated 2 months ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆67Updated last year
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆69Updated 2 weeks ago
• bebiksior / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆146Updated last week
• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆274Updated last year
• bhaveshk90 / Content-Security-Policy-CSP-Bypass-Techniques
  Content-Security-Policy (CSP) Bypass Techniques
  ☆63Updated 4 years ago
• adrgs / fontleak
  Fast exfiltration of text using only CSS and Ligatures
  ☆53Updated 2 months ago
• emadshanab / Gf-Patterns-Collection
  ☆155Updated 2 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• shreyaschavhan / 10000-h1-disclosed-reports
  10,000 H1 Disclosed Reports
  ☆110Updated last year
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆61Updated 3 years ago
• Lupin-Holmes / sandwich
  ☆65Updated last year