boku7 / XSS-Clientside-Attacks
A repository of JavaScript XSS attacks against client browsers
☆98Updated 4 years ago
Alternatives and similar repositories for XSS-Clientside-Attacks:
Users that are interested in XSS-Clientside-Attacks are comparing it to the libraries listed below
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- ☆68Updated last year
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆97Updated 2 years ago
- A combined wordlists for files and directory discovery☆124Updated 3 years ago
- Notes for CRTP☆40Updated 4 years ago
- A one liner Bash command which finds CORS in every possible endpoint.☆129Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- The scripts I write to help me on my bug bounty hunting☆121Updated 3 years ago
- Simple fork from degoogle original project with bug hunting purposes☆87Updated 2 years ago
- AWS S3 open bucket poc automated script.☆57Updated 3 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆65Updated 2 years ago
- ☆47Updated 7 years ago
- ☆95Updated 3 years ago
- HTTP parameter discovery suite.☆61Updated 4 years ago
- Horizontal Domain Discovery☆76Updated last year
- Vulnerable SAML infrastructure training applicaiton☆51Updated 2 years ago
- Intentionally Vulnerable Nodejs Application & APIs☆22Updated 2 years ago
- HTTP verb tampering & methods enumeration☆57Updated 3 years ago
- ☆53Updated 3 years ago
- Prototype Pollution Scanner☆113Updated 3 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- Cheat sheet☆38Updated 5 years ago
- ☆76Updated 4 years ago
- Pentest stuff☆49Updated last year
- A reverse whois tool based on Whoxy API.☆165Updated last year
- ☆75Updated 11 months ago
- A "Spring4Shell" vulnerability scanner.☆49Updated 2 months ago
- A python based blind SQL injection exploitation script☆136Updated 5 years ago