Alternatives and similar repositories for Content-Security-Policy-CSP-Bypass-Techniques

Users that are interested in Content-Security-Policy-CSP-Bypass-Techniques are comparing it to the libraries listed below

• securebinary / firebaseExploiter
  FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…
  ☆173Updated 3 years ago
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆180Updated last year
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆72Updated 2 years ago
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆121Updated 3 years ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆83Updated 2 years ago
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆72Updated 6 months ago
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆185Updated last year
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆84Updated this week
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆157Updated last year
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆105Updated 5 months ago
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications (Official BApp Extension Available)
  ☆243Updated 2 months ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆112Updated last year
• PortSwigger / splitting-the-email-atom
  ☆91Updated last month
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆311Updated last year
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆211Updated last year
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆128Updated 6 years ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆80Updated 2 years ago
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆102Updated last year
• PortSwigger / serialization-examples
  ☆42Updated 2 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• y0k4i-1337 / clairvoyancex
  Obtain GraphQL API schema despite disabled introspection!
  ☆72Updated 4 years ago
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆159Updated 4 years ago
• emadshanab / BChecks-Collection
  BChecks collection for Burp Suite Professional
  ☆101Updated last year
• BugBountyzip / Bambdas
  ☆138Updated last year
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆148Updated last year
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆151Updated 9 months ago
• 0xTeles / jsleak
  a Go code to detect leaks in JS files via regex patterns
  ☆149Updated 4 years ago
• sametsahinnet / jsscm
  JSSCM detects expired domains for Stored XSS exploitation during browsing.
  ☆56Updated 9 months ago
• Anof-cyber / ParaForge
  A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
  ☆141Updated 2 years ago
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆117Updated 2 years ago