cweb / unicode-haxLinks
A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.
☆42Updated 7 years ago
Alternatives and similar repositories for unicode-hax
Users that are interested in unicode-hax are comparing it to the libraries listed below
Sorting:
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- HTML5 WebSocket message fuzzer☆146Updated 6 years ago
- ☆70Updated 7 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 8 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- Demo server for testing Java deserialization payloads☆15Updated 8 years ago
- An interactive OOB XXE data exfiltration tool☆90Updated 8 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- Dirbuster plugin for Burp Suite☆70Updated 8 years ago
- Evenly distributes scanner load across targets☆87Updated last month
- Exploit insecure crossdomain.xml files.☆26Updated 8 years ago
- Tool for CVE-2018-16323☆81Updated 6 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆82Updated 7 years ago
- Improved decoder for Burp Suite☆137Updated 3 years ago
- ☆162Updated 7 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 7 years ago
- Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps a…☆74Updated 7 years ago
- TLS Redirection☆120Updated 7 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 8 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago
- Writeup of CVE-2017-1002101 with sample "exploit"/escape☆35Updated 7 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆168Updated 2 years ago
- The Guppy Proxy (GUI Pappy)☆143Updated 5 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Updated 8 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 11 years ago
- OAuth plugin for Burp Suite Extender☆42Updated 6 years ago
- Burp extension to help developers replicate findings from pen tests☆70Updated 10 months ago