Alternatives and similar repositories for Content-Security-Policy-CSP-Bypass-Techniques

Users that are interested in Content-Security-Policy-CSP-Bypass-Techniques are comparing it to the libraries listed below

• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆71Updated 2 years ago
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆96Updated last month
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆180Updated last year
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆71Updated 3 months ago
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆178Updated last year
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆79Updated last year
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆149Updated last year
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆208Updated last year
• securebinary / firebaseExploiter
  FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…
  ☆164Updated 2 years ago
• payatu / vuln-nodejs-app
  ☆28Updated last year
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆148Updated 9 months ago
• PortSwigger / serialization-examples
  ☆42Updated last year
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆88Updated 5 months ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆74Updated 2 years ago
• PortSwigger / splitting-the-email-atom
  ☆83Updated 2 months ago
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆118Updated 2 years ago
• Icare1337 / LibreOffice_Tips_Bug_Bounty
  Some tips for Bug Bounty using LibreOffice
  ☆48Updated 6 months ago
• BugBountyzip / Bambdas
  ☆135Updated 10 months ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆111Updated last year
• RoqueNight / LFI---RCE-Cheat-Sheet
  Transition form local file inclusion attacks to remote code exection
  ☆64Updated 5 years ago
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆102Updated last year
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications
  ☆227Updated 6 months ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆83Updated last year
• MayankPandey01 / Sparty-2.0
  An MS Sharepoint and Frontpage Auditing Tool
  ☆53Updated 10 months ago
• osamahamad / FUZZING
  Collected fuzzing payloads from different resources
  ☆121Updated last year
• wdahlenburg / werkzeug-debug-console-bypass
  Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…
  ☆61Updated 2 years ago
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆144Updated last year
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆157Updated 3 years ago
• reewardius / iis-pentest
  ☆74Updated 3 months ago
• emadshanab / BChecks-Collection
  BChecks collection for Burp Suite Professional
  ☆99Updated last year