borisreitman / CrossXHRView external linksLinks
Cross Domain XHR: A drop-in replacement for XmlHttpRequest object.
☆61Jan 31, 2013Updated 13 years ago
Alternatives and similar repositories for CrossXHR
Users that are interested in CrossXHR are comparing it to the libraries listed below
Sorting:
- The Demo for CVE-2017-11427☆12Mar 3, 2018Updated 7 years ago
- Viewstate Hidden Control Enumerator☆17Sep 12, 2013Updated 12 years ago
- ☆10May 23, 2019Updated 6 years ago
- Generates Flash based CORS CSRF Proof of Concepts that can be sent directly to clients☆14Jul 3, 2013Updated 12 years ago
- ☆12Sep 23, 2023Updated 2 years ago
- WEB 跨域postMessage() 漏洞挖掘工具,基本原理:使用AJAX 获取页面代码,结合iframe 和data 协议构造测试环境,然后在iframe �下的window.onmessage 中插入hook 监控onmessage 的参数,最后通过能否被原来的onme…☆11Sep 13, 2016Updated 9 years ago
- Python implementation of a Bugcrowd api client.☆11Nov 20, 2025Updated 2 months ago
- Mass Android app vulnerability analysis toolkit☆13Dec 6, 2016Updated 9 years ago
- A domain/ip fuzzing tool for vulnerability mining☆13Jan 2, 2015Updated 11 years ago
- ☆14Jun 7, 2018Updated 7 years ago
- ☆20May 24, 2021Updated 4 years ago
- Creates a SOCK proxy server that transmits data over an SSRF vulnerability☆114Aug 8, 2012Updated 13 years ago
- "Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protecti…☆14Mar 4, 2017Updated 8 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆43Aug 26, 2013Updated 12 years ago
- Burp Suite Collaborator HTTP API☆45May 27, 2018Updated 7 years ago
- Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls☆42Jan 22, 2016Updated 10 years ago
- ☆83Jan 29, 2016Updated 10 years ago
- A tool for manipulating SWF files, leveraging zlib to craft alphanumeric-only valid SWF files in order to allow CSRF with SOP bypass than…☆109Mar 26, 2024Updated last year
- Analyze and display the Web technology of current page.☆138Aug 14, 2017Updated 8 years ago
- GitLab 11.4.7 SSRF配合redis远程执行代码☆120Apr 24, 2019Updated 6 years ago
- Avoidz tool to bypass most A.V softwares☆139Sep 28, 2017Updated 8 years ago
- ☆23Apr 21, 2022Updated 3 years ago
- Ruby interface to cirt.net default passwords database☆19May 4, 2011Updated 14 years ago
- MS16-032(CVE-2016-0099) for SERVICE ONLY☆82Mar 15, 2017Updated 8 years ago
- cobaltstrike xor64.bin补完计划☆135Oct 14, 2018Updated 7 years ago
- flash 劫持轮子,CSRF,劫持,跳转,swf 有需求可以提issues ,src挖掘,劫持response☆86Nov 9, 2019Updated 6 years ago
- Cobalt Strike log state tracking, parsing, and storage☆24Jul 18, 2019Updated 6 years ago
- CVE-2017-12149 JBOSS as 6.X反序列化(反弹shell版)☆22Nov 22, 2017Updated 8 years ago
- ☆24Nov 11, 2022Updated 3 years ago
- ☆133Nov 6, 2015Updated 10 years ago
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆55Mar 27, 2017Updated 8 years ago
- A lightweight batch scanning framework based on gevent.☆48Jun 22, 2018Updated 7 years ago
- Add my own POC to test Visual Studio trick to run code when building☆22Jul 18, 2017Updated 8 years ago
- A set of compiled application restriction bypasses☆30Mar 15, 2017Updated 8 years ago
- MS15-076 Privilege Escalation☆101Sep 21, 2015Updated 10 years ago
- ☆62Jul 18, 2017Updated 8 years ago
- ☆73Apr 18, 2013Updated 12 years ago
- Reverse TCP Port to UDP Forwarding Tools☆161Nov 11, 2016Updated 9 years ago
- A simple regular-expression based DNS server☆22Apr 21, 2015Updated 10 years ago