cezary-sec / awesome-browser-securityLinks
A curated list of awesome browser security learning material.
☆144Updated 2 years ago
Alternatives and similar repositories for awesome-browser-security
Users that are interested in awesome-browser-security are comparing it to the libraries listed below
Sorting:
- Resources for Browser Security Research☆44Updated 3 years ago
- Awesome information for WebSockets security research☆276Updated 3 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- ☆202Updated 11 months ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆210Updated 2 years ago
- List of Trusted Types bypasses☆102Updated last year
- Grammar-based HTTP/1 fuzzer with mutation ability☆257Updated 11 months ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆52Updated 2 years ago
- XS-Leak Browser Test Suite☆85Updated last year
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆248Updated 3 years ago
- CTF write-ups☆98Updated last month
- Manager of third-party sources of Semgrep rules 🗂☆90Updated last year
- ☆12Updated 2 years ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆138Updated 2 weeks ago
- A structure-aware HTTP fuzzing library☆218Updated 10 months ago
- ☆111Updated 3 years ago
- Purposely vulnerable Java application to help lead secure coding workshops☆187Updated last year
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆66Updated 8 months ago
- XS-Leaks Wiki☆169Updated 4 months ago
- ☆169Updated 4 years ago
- Find CVE PoCs on GitHub☆153Updated 2 months ago
- Client-Side Prototype Pollution Tools☆85Updated 4 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆106Updated 8 months ago
- A collection of my Semgrep rules☆50Updated 2 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆174Updated last year
- This repository is a suplimentary material for Android Training's done by Anant Shrivastava from 2012-2017☆222Updated 4 years ago
- Solutions and write-ups from security-based competitions also known as Capture The Flag competition☆102Updated 5 years ago
- A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻☆126Updated 3 years ago
- Predict Mongo ObjectIds☆145Updated 7 years ago
- A Node.js vulnerability finding tool.☆96Updated 2 months ago