doyensec / regexploitLinks
Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)
☆807Updated last year
Alternatives and similar repositories for regexploit
Users that are interested in regexploit are comparing it to the libraries listed below
Sorting:
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆725Updated 10 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆929Updated this week
- A collection of browser-based side channel attack vectors.☆749Updated last year
- Fast HTTP enumerator☆484Updated 2 months ago
- ☆681Updated 2 years ago
- Finding potential software vulnerabilities from git commit messages☆416Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆1,965Updated last year
- ☆998Updated last week
- Collections of Orange Tsai's public presentation slides.☆733Updated 5 months ago
- Content-Type Research☆618Updated last year
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆424Updated 3 weeks ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,642Updated 3 weeks ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆733Updated 3 years ago
- Client Side Prototype Pollution Scanner☆518Updated 2 years ago
- Repository for information about 0-days exploited in-the-wild.☆798Updated 2 months ago
- ☆692Updated 7 months ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆368Updated 10 months ago
- 🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.☆884Updated 5 months ago
- A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me☆2,130Updated 6 months ago
- ☆540Updated 2 months ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆206Updated 2 years ago
- ☆1,339Updated 2 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆879Updated 3 years ago
- DOM XSS scanner for Single Page Applications☆411Updated 3 weeks ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆440Updated 3 months ago
- CORS Misconfiguration Scanner☆1,441Updated 2 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆624Updated 2 years ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆547Updated 3 years ago
- Reverse proxies cheatsheet☆1,822Updated last year
- Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.☆1,610Updated 3 weeks ago