A websocket-based reverse (javascript) shell for XSS attacks.
☆29Sep 2, 2022Updated 3 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆67Dec 12, 2022Updated 3 years ago
- PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.☆24Jan 26, 2022Updated 4 years ago
- This extension is meticulously crafted to safeguard users from phishing attempts that replicate the Office365 login interface, particular…☆11Nov 27, 2023Updated 2 years ago
- Audio Transcription for WhatsApp☆15Jun 28, 2024Updated last year
- Organização das palestras - Evento Aratu | Boitatech☆37Sep 10, 2022Updated 3 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints☆12Jun 15, 2024Updated last year
- Versão PT-BR do hacktricks.☆44Nov 13, 2024Updated last year
- Pipe nmap verbose output to a usable format for httpx or host:port notation.☆15Jul 7, 2022Updated 3 years ago
- SHA256 sentence: discover a SHA256 checksum that matches a sentence's description of hex digit words.☆19Apr 14, 2025Updated last year
- CVE-2021-26084 - Confluence Pre-Auth RCE | OGNL injection☆21Sep 1, 2021Updated 4 years ago
- LLM Vulnerable Application☆13Aug 19, 2023Updated 2 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆74Dec 28, 2023Updated 2 years ago
- Central Repo for Burp extensions☆27Dec 13, 2024Updated last year
- RASP project for Android app protection☆14Oct 11, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- c4mund0n60 is a tool that use output of known tools for generate smart information about a domain☆11Sep 20, 2023Updated 2 years ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Dec 24, 2023Updated 2 years ago
- ManageEngine PAM360, Password Manager Pro, and Access Manager Plus unauthenticated remote code execution vulnerability PoC-exploit☆31Sep 27, 2022Updated 3 years ago
- Styx is an cross-platform GUI interface for HackTheBox made in GoLang☆31Feb 8, 2026Updated 2 months ago
- ☆30Mar 12, 2026Updated last month
- ☆11Jun 8, 2022Updated 3 years ago
- ☆42Nov 15, 2025Updated 5 months ago
- Recon(Amass, Naabu, Nuclei) workflow with Github Actions☆17Nov 12, 2024Updated last year
- Collection of ezine about virii☆17Sep 13, 2022Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Dec 26, 2023Updated 2 years ago
- SprayShark is a modular G-Suite password sprayer with threading!☆58May 17, 2025Updated 11 months ago
- A COFF loader made in Rust☆333Mar 14, 2026Updated last month
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆29Dec 19, 2023Updated 2 years ago
- An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.☆247Jul 6, 2025Updated 9 months ago
- Collaborative repository to catalogue insecure functions in various programming languages.☆11May 9, 2022Updated 3 years ago
- experimental wildcard subdomain filtering prototype☆14Aug 5, 2023Updated 2 years ago
- ADFS Brute-Force Login Script☆10Mar 19, 2024Updated 2 years ago
- Tutorial covering how to discover DLLs for Hijacking and how to create proxy DLLS using Microsoft Teams as an example☆16Apr 7, 2021Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- This is a PoC code to exploit the IngressNightmare vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974).☆249Mar 26, 2025Updated last year
- Colored Cat is a syntax highlighter file reader.☆15Jun 21, 2024Updated last year
- navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities☆74May 20, 2023Updated 2 years ago
- Proofs-Of-360Security Sandbox Escape☆10Mar 18, 2022Updated 4 years ago
- Native Powers Talk demos☆18Jan 30, 2026Updated 3 months ago
- This is a set of scripts and exploits for attacking njrat servers.☆13Dec 9, 2022Updated 3 years ago
- A Powerful XSS,RXSS,BXSS finding tool☆31Oct 29, 2025Updated 6 months ago