cweb / unicode-hax
A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.
☆42Updated 7 years ago
Alternatives and similar repositories for unicode-hax:
Users that are interested in unicode-hax are comparing it to the libraries listed below
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- HTML5 WebSocket message fuzzer☆144Updated 6 years ago
- ☆70Updated 7 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 11 years ago
- An interactive OOB XXE data exfiltration tool☆91Updated 7 years ago
- Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java☆55Updated 8 years ago
- Tool for CVE-2018-16323☆81Updated 6 years ago
- ☆162Updated 7 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Updated 8 years ago
- Improved decoder for Burp Suite☆137Updated 3 years ago
- ☆33Updated 3 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆82Updated 7 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- DupeKeyInjector☆135Updated 3 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 7 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- Demo server for testing Java deserialization payloads☆15Updated 8 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- TLS Redirection☆120Updated 7 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 8 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 6 years ago
- Burp extension to help developers replicate findings from pen tests☆70Updated 8 months ago
- Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …☆118Updated 10 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- .NET Deserialization Passive Scanner☆45Updated 7 years ago
- Exploit insecure crossdomain.xml files.☆26Updated 7 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 2 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 5 years ago