doyensec / CSPTPlayground
CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
☆84Updated last month
Related projects ⓘ
Alternatives and complementary repositories for CSPTPlayground
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆78Updated last year
- Chrome extension for automating CSPT discovery☆49Updated last month
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆118Updated 7 months ago
- A set of open-source community scripts☆60Updated last month
- ☆65Updated last month
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆117Updated 2 years ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆60Updated 4 months ago
- ☆143Updated last month
- Some tips for Bug Bounty using LibreOffice☆33Updated 4 months ago
- Collection's of Tech Talk that are presented by me :)☆95Updated last month
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆117Updated 2 weeks ago
- 🛠️ Workflows created by the community☆61Updated 3 months ago
- Create your own recon & vulnerability scanner with Trickest and GitHub☆49Updated last year
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆105Updated this week
- ☆71Updated 4 months ago
- ☠️ Code for the Defcon Workshop☆22Updated 3 months ago
- Tool to parse subdomains from dmarc.live☆64Updated 7 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆106Updated last week
- ☆98Updated 4 months ago
- Finds graphql queries in javascript files☆57Updated 6 months ago
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆53Updated 2 months ago
- ☆56Updated last year
- An Incredibly Annoying, Insufferable Authentication Implementation☆30Updated 7 months ago
- Filters and highlights Proxy HTTP history for requests with potentially vulnerable parameters☆23Updated 11 months ago
- The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…☆17Updated 5 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆141Updated last month
- ☆135Updated 6 months ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆128Updated 2 months ago