Alternatives and similar repositories for Content-Security-Policy-CSP-Bypass-Techniques

Users that are interested in Content-Security-Policy-CSP-Bypass-Techniques are comparing it to the libraries listed below

• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆77Updated last year
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆82Updated last year
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆119Updated 2 years ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆95Updated last year
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆69Updated last week
• msrkp / MXSS
  Awesome MXSS ??
  ☆52Updated 8 months ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆68Updated 2 years ago
• abdoghazy2015 / ofbiz-CVE-2023-49070-RCE-POC
  ☆58Updated last year
• PortSwigger / server-side-prototype-pollution
  ☆37Updated 2 years ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆141Updated 11 months ago
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆53Updated 2 months ago
• Th0h0 / autopoisoner
  Web cache poisoning vulnerability scanner.
  ☆71Updated 3 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 3 weeks ago
• h1pmnh / sqli-dojo-docker
  A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment
  ☆44Updated last year
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆67Updated last year
• Rhynorater / rebindMultiA
  ☆63Updated 2 years ago
• PortSwigger / serialization-examples
  ☆42Updated last year
• UGF0aWVudF9aZXJv / Atlassian-Jira-pentesting
  ☆42Updated 4 months ago
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆61Updated 4 years ago
• pentesterland / Log4Shell
  ☆69Updated 3 years ago
• emadshanab / BChecks-Collection
  BChecks collection for Burp Suite Professional
  ☆98Updated last year
• flamebarke / SkittlesBambda
  Filters and highlights Proxy HTTP history for requests with potentially vulnerable parameters
  ☆23Updated last year
• h33tlit / Nuclei-and-Subfinder-API
  Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …
  ☆60Updated 2 years ago
• PortSwigger / splitting-the-email-atom
  ☆81Updated 8 months ago
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆86Updated 2 months ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆61Updated 3 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• dipakpanchal05 / CVE-2022-23808
  phpMyAdmin XSS
  ☆116Updated 8 months ago
• nu11pointer / fuzzlists
  A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc
  ☆103Updated 3 months ago