A websocket-based reverse (javascript) shell for XSS attacks.
☆29Sep 2, 2022Updated 3 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below
Sorting:
- quick script for mixing wordlists in a way that maintains order. ([1,2],[3,4],[5,6] -> [1,3,5,2,4,6])☆10Mar 6, 2022Updated 4 years ago
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆67Dec 12, 2022Updated 3 years ago
- PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.☆24Jan 26, 2022Updated 4 years ago
- This extension is meticulously crafted to safeguard users from phishing attempts that replicate the Office365 login interface, particular…☆11Nov 27, 2023Updated 2 years ago
- Organização das palestras - Evento Aratu | Boitatech☆37Sep 10, 2022Updated 3 years ago
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints☆12Jun 15, 2024Updated last year
- Versão PT-BR do hacktricks.☆44Nov 13, 2024Updated last year
- Simple tool for exploiting JWT vulnerabilities☆13Dec 1, 2025Updated 3 months ago
- A better way of querying certificate transparency logs☆90Mar 30, 2025Updated 11 months ago
- CVE-2021-26084 - Confluence Pre-Auth RCE | OGNL injection☆21Sep 1, 2021Updated 4 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆73Dec 28, 2023Updated 2 years ago
- OSINT automation for hackers.☆23Jun 27, 2023Updated 2 years ago
- Central Repo for Burp extensions☆24Dec 13, 2024Updated last year
- RASP project for Android app protection☆13Oct 11, 2024Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Dec 24, 2023Updated 2 years ago
- Nim cross-compiler tool☆26Apr 2, 2023Updated 2 years ago
- ManageEngine PAM360, Password Manager Pro, and Access Manager Plus unauthenticated remote code execution vulnerability PoC-exploit☆30Sep 27, 2022Updated 3 years ago
- Styx is an cross-platform GUI interface for HackTheBox made in GoLang☆31Feb 8, 2026Updated last month
- i will crack some random softwares & post that as Frida script, so that you wont worry about malware/spyware.☆29Dec 6, 2025Updated 3 months ago
- ☆30Mar 12, 2026Updated last week
- Prototype Pollution Lab☆18Nov 20, 2020Updated 5 years ago
- ☆31Aug 24, 2022Updated 3 years ago
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆59Jan 22, 2023Updated 3 years ago
- This map lists the essential techniques to bypass anti-virus and EDR☆15Aug 9, 2023Updated 2 years ago
- Recon(Amass, Naabu, Nuclei) workflow with Github Actions☆17Nov 12, 2024Updated last year
- A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.☆17Jan 31, 2024Updated 2 years ago
- Collection of ezine about virii☆17Sep 13, 2022Updated 3 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Dec 26, 2023Updated 2 years ago
- SprayShark is a modular G-Suite password sprayer with threading!☆57May 17, 2025Updated 10 months ago
- C# implementation of Out-Minidump.ps1☆10Jul 13, 2018Updated 7 years ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆29Dec 19, 2023Updated 2 years ago
- An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.☆246Jul 6, 2025Updated 8 months ago
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆68Feb 28, 2025Updated last year
- experimental wildcard subdomain filtering prototype☆14Aug 5, 2023Updated 2 years ago
- Tutorial covering how to discover DLLs for Hijacking and how to create proxy DLLS using Microsoft Teams as an example☆16Apr 7, 2021Updated 4 years ago
- This repository presents a proof-of-concept of CVE-2024-23897☆16Apr 16, 2024Updated last year
- navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities☆73May 20, 2023Updated 2 years ago
- A toy Linux rootkit.☆13May 10, 2013Updated 12 years ago
- Organizar documentos sobre OSINT feitos em pt-br☆21Dec 20, 2023Updated 2 years ago