boku7 / XSS-Clientside-AttacksLinks
A repository of JavaScript XSS attacks against client browsers
☆101Updated 4 years ago
Alternatives and similar repositories for XSS-Clientside-Attacks
Users that are interested in XSS-Clientside-Attacks are comparing it to the libraries listed below
Sorting:
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- HTTP parameter discovery suite.☆63Updated 5 years ago
- Notes for CRTP☆41Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- The scripts I write to help me on my bug bounty hunting☆121Updated 3 years ago
- Simple fork from degoogle original project with bug hunting purposes☆89Updated 2 years ago
- ☆55Updated 2 years ago
- ☆68Updated last year
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆96Updated 2 years ago
- ☆57Updated last year
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆90Updated 11 months ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- ☆49Updated 7 years ago
- Host Header Injection Scanner☆47Updated 4 years ago
- Vulnerable SAML infrastructure training applicaiton☆54Updated 2 years ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆115Updated last year
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66Updated 3 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆59Updated 2 years ago
- Prototype pollution scanner using headless chrome☆218Updated 2 years ago
- A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host☆42Updated 5 years ago
- This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities☆92Updated last year
- A python based blind SQL injection exploitation script☆137Updated 5 years ago
- HTTP verb tampering & methods enumeration☆59Updated 3 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆121Updated 3 years ago
- ☆76Updated last year
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- ☆18Updated 2 years ago