doyensec / regexploit
Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)
β793Updated 9 months ago
Related projects β
Alternatives and complementary repositories for regexploit
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β833Updated last month
- Tool to check for dependency confusion vulnerabilities in multiple package management systemsβ701Updated 3 months ago
- Semgrep rules registryβ809Updated this week
- β655Updated 2 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)β650Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.β356Updated 3 years ago
- β958Updated 11 months ago
- β1,245Updated last week
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outpβ¦β457Updated last year
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requestsβ337Updated 3 months ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizableβ¦β1,540Updated 4 months ago
- Electron JS Browser To Find XSS Vulnerabilities Automaticallyβ684Updated 3 years ago
- A collection of browser-based side channel attack vectors.β740Updated 8 months ago
- A tool to test security of json web tokenβ271Updated 3 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ804Updated 2 years ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β1,819Updated 10 months ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β877Updated this week
- β528Updated 11 months ago
- Reverse proxies cheatsheetβ1,782Updated last year
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-iconβ1,059Updated 9 months ago
- Create tar/zip archives that can exploit directory traversal vulnerabilitiesβ976Updated 3 years ago
- Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.β1,204Updated last month
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"β197Updated last year
- Fast HTTP enumeratorβ461Updated 3 months ago
- Finding potential software vulnerabilities from git commit messagesβ397Updated last year
- CORS Misconfiguration Scannerβ1,381Updated 2 years ago
- Client Side Prototype Pollution Scannerβ511Updated 2 years ago
- β684Updated last year
- Proof of concept code for Datadog Security Labs referenced exploits.β417Updated last year