bahruzjabiyev / t-reqs
Grammar-based HTTP/1 fuzzer with mutation ability
☆247Updated 4 months ago
Alternatives and similar repositories for t-reqs:
Users that are interested in t-reqs are comparing it to the libraries listed below
- ☆182Updated 4 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆64Updated last year
- A structure-aware HTTP fuzzing library☆210Updated 3 months ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆42Updated 2 years ago
- A curated list of awesome browser security learning material.☆139Updated 2 years ago
- Black box fuzzer for web applications☆423Updated 8 months ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆45Updated last year
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆347Updated 2 years ago
- CodeQL zero to hero blog post series challenges☆114Updated 3 months ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆174Updated last month
- jws2pubkey tool☆38Updated 9 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆77Updated 4 months ago
- When MVC magic turns black☆291Updated 4 years ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆171Updated 4 months ago
- Same Origin XSS challenge☆56Updated 2 years ago
- Find CVE PoCs on GitHub☆144Updated last year
- XS-Leak Browser Test Suite☆77Updated last year
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆350Updated 6 months ago
- List of Trusted Types bypasses☆90Updated 10 months ago
- ☆326Updated 3 years ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated 11 months ago
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆48Updated 3 months ago
- Finding Java gadget chains with CodeQL☆167Updated last month
- ☆402Updated 3 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆39Updated last year
- PP-finder Help you find gadget for prototype pollution exploitation☆151Updated 7 months ago
- cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…☆140Updated 3 years ago