doyensec / awesome-electronjs-hacking

Related projects ⓘ

Alternatives and complementary repositories for awesome-electronjs-hacking

• doyensec / electronegativity
  Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.
  ☆972Updated 2 months ago
• filedescriptor / untrusted-types
  ☆656Updated 2 years ago
• fransr / postMessage-tracker
  A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
  ☆1,059Updated 9 months ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆407Updated last week
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆804Updated 2 years ago
• s0md3v / MyPapers
  Repository for hosting my research papers
  ☆504Updated 7 months ago
• jmdx / TLS-poison
  ☆684Updated last year
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆337Updated 3 months ago
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆543Updated last year
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆472Updated 11 months ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆511Updated 2 years ago
• httpvoid / writeups
  ☆1,176Updated 2 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆541Updated 9 months ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆651Updated 2 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆614Updated 9 months ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆356Updated 3 years ago
• dwisiswant0 / ppfuzz
  A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
  ☆589Updated last year
• PortSwigger / http-request-smuggler
  ☆958Updated 11 months ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆528Updated 9 months ago
• ghsec / webHunt
  Web App bug hunting
  ☆553Updated 5 months ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆250Updated last year
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆771Updated 2 years ago
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆697Updated 4 years ago
• zigoo0 / JSONBee
  A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
  ☆671Updated 6 months ago
• aadityapurani / NodeJS-Red-Team-Cheat-Sheet
  NodeJS Red-Team Cheat Sheet
  ☆200Updated 5 years ago
• punishell / bbtips
  BugBountyTips
  ☆403Updated 5 months ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆585Updated 3 years ago
• cezary-sec / awesome-browser-security
  A curated list of awesome browser security learning material.
  ☆130Updated 2 years ago
• RenwaX23 / XSSTRON
  Electron JS Browser To Find XSS Vulnerabilities Automatically
  ☆684Updated 3 years ago