A websocket-based reverse (javascript) shell for XSS attacks.
☆30Sep 2, 2022Updated 3 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below
Sorting:
- PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.☆24Jan 26, 2022Updated 4 years ago
- This extension is meticulously crafted to safeguard users from phishing attempts that replicate the Office365 login interface, particular…☆11Nov 27, 2023Updated 2 years ago
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆69Dec 12, 2022Updated 3 years ago
- Audio Transcription for WhatsApp☆16Jun 28, 2024Updated last year
- Organização das palestras - Evento Aratu | Boitatech☆38Sep 10, 2022Updated 3 years ago
- Tool to start a python http server in a simple way☆10Mar 30, 2022Updated 3 years ago
- Simple tool for exploiting JWT vulnerabilities☆12Dec 1, 2025Updated 3 months ago
- Versão PT-BR do hacktricks.☆44Nov 13, 2024Updated last year
- LLM Vulnerable Application☆13Aug 19, 2023Updated 2 years ago
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints☆12Jun 15, 2024Updated last year
- Quickly find all identities someone has used on their Github commits☆17Jul 28, 2024Updated last year
- RASP project for Android app protection☆14Oct 11, 2024Updated last year
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆72Dec 28, 2023Updated 2 years ago
- Pipe nmap verbose output to a usable format for httpx or host:port notation.☆17Jul 7, 2022Updated 3 years ago
- Prototype Pollution Lab☆19Nov 20, 2020Updated 5 years ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Dec 24, 2023Updated 2 years ago
- A better way of querying certificate transparency logs☆91Mar 30, 2025Updated 11 months ago
- Materials used in preperation for the BSCP certification from PortSwigger☆18Jan 28, 2022Updated 4 years ago
- SHA256 sentence: discover a SHA256 checksum that matches a sentence's description of hex digit words.☆21Apr 14, 2025Updated 10 months ago
- CVE-2021-26084 - Confluence Pre-Auth RCE | OGNL injection☆21Sep 1, 2021Updated 4 years ago
- Xss payload for bypassing waf☆18Apr 18, 2020Updated 5 years ago
- Welcome to RFS notes to CRTP - Certified Red Team Professional by Altered Security.☆21Aug 20, 2024Updated last year
- ☆20Sep 2, 2021Updated 4 years ago
- Nim cross-compiler tool☆26Apr 2, 2023Updated 2 years ago
- i will crack some random softwares & post that as Frida script, so that you wont worry about malware/spyware.☆29Dec 6, 2025Updated 2 months ago
- ☆29Mar 4, 2025Updated 11 months ago
- This is an UNOFFICIAL guide and general list of cheatsheets, references, and walkthroughs aligned with the OffSec OSCP exam process☆33Dec 12, 2025Updated 2 months ago
- Styx is an cross-platform GUI interface for HackTheBox made in GoLang☆28Feb 8, 2026Updated 3 weeks ago
- ManageEngine PAM360, Password Manager Pro, and Access Manager Plus unauthenticated remote code execution vulnerability PoC-exploit☆29Sep 27, 2022Updated 3 years ago
- My notes/solutions to the problems in "The Web Application Hacker's Handbook" (https://portswigger.net/web-security/web-application-hacke…☆28Jan 22, 2024Updated 2 years ago
- Final assignment for the course Data Visualization with Python, part of IBM Data Science Professional Certification on Coursera☆11Jun 22, 2020Updated 5 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Dec 26, 2023Updated 2 years ago
- Obsidian vault with writeups for HackTheBox/Proving Grounds boxes and cheatsheets for CPTS/OSCP preparation.☆39Sep 8, 2025Updated 5 months ago
- A deliberately insecure Java web application☆44Oct 23, 2025Updated 4 months ago
- Notes, Lab Commands and Vulnerability Information for BSCP Exam Prep☆49Jun 7, 2023Updated 2 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆41Oct 25, 2021Updated 4 years ago
- ☆43Nov 15, 2025Updated 3 months ago
- SprayShark is a modular G-Suite password sprayer with threading!☆57May 17, 2025Updated 9 months ago
- A Powerful XSS,RXSS,BXSS finding tool☆31Oct 29, 2025Updated 4 months ago