Alternatives and similar repositories for Content-Security-Policy-CSP-Bypass-Techniques

Users that are interested in Content-Security-Policy-CSP-Bypass-Techniques are comparing it to the libraries listed below

• securebinary / firebaseExploiter
  FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…
  ☆169Updated 3 years ago
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆180Updated last year
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆72Updated 2 years ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆154Updated last year
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆102Updated 4 months ago
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆120Updated 2 years ago
• RoqueNight / LFI---RCE-Cheat-Sheet
  Transition form local file inclusion attacks to remote code exection
  ☆66Updated 5 years ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆81Updated last year
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆181Updated last year
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆208Updated last year
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications (Official BApp Extension Available)
  ☆238Updated 2 weeks ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆78Updated 2 years ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆84Updated last year
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆74Updated 5 months ago
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆147Updated last year
• reewardius / iis-pentest
  ☆79Updated 5 months ago
• d3mondev / burp-vps-proxy
  This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
  ☆244Updated 8 months ago
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆63Updated 4 years ago
• svdwi / OSWE-Labs-Poc
  Dockerized labs For Web Expert (OSWE) certification. Preparation for coming AWAE Training ...
  ☆117Updated 4 years ago
• Sybil-Scan / imagemagick-lfi-poc
  ImageMagick LFI PoC [CVE-2022-44268]
  ☆53Updated 2 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆120Updated last year
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆159Updated 3 years ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆149Updated 11 months ago
• payatu / vuln-nodejs-app
  ☆28Updated last year
• PortSwigger / splitting-the-email-atom
  ☆86Updated 4 months ago
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆102Updated last year
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆308Updated last year
• daffainfo / all-about-apikey
  Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
  ☆287Updated 2 years ago
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆87Updated 7 months ago
• simplylu / jpeg_polyglot_xss
  Exploiting XSS with Javascript/JPEG Polyglot (by @medusa_0xf)
  ☆21Updated 3 years ago