doyensec / regexploit

Related projects ⓘ

Alternatives and complementary repositories for regexploit

• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆833Updated last month
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆701Updated 3 months ago
• semgrep / semgrep-rules
  Semgrep rules registry
  ☆809Updated this week
• filedescriptor / untrusted-types
  ☆655Updated 2 years ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆650Updated 2 years ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆356Updated 3 years ago
• PortSwigger / http-request-smuggler
  ☆958Updated 11 months ago
• PortSwigger / param-miner
  ☆1,245Updated last week
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆457Updated last year
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆337Updated 3 months ago
• doyensec / inql
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,540Updated 4 months ago
• RenwaX23 / XSSTRON
  Electron JS Browser To Find XSS Vulnerabilities Automatically
  ☆684Updated 3 years ago
• xsleaks / xsleaks
  A collection of browser-based side channel attack vectors.
  ☆740Updated 8 months ago
• DontPanicO / jwtXploiter
  A tool to test security of json web token
  ☆271Updated 3 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆804Updated 2 years ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,819Updated 10 months ago
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆877Updated this week
• neex / http2smugl
  ☆528Updated 11 months ago
• GrrrDog / weird_proxies
  Reverse proxies cheatsheet
  ☆1,782Updated last year
• fransr / postMessage-tracker
  A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
  ☆1,059Updated 9 months ago
• ptoomey3 / evilarc
  Create tar/zip archives that can exploit directory traversal vulnerabilities
  ☆976Updated 3 years ago
• tillson / git-hound
  Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.
  ☆1,204Updated last month
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆197Updated last year
• RedTeamPentesting / monsoon
  Fast HTTP enumerator
  ☆461Updated 3 months ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆397Updated last year
• s0md3v / Corsy
  CORS Misconfiguration Scanner
  ☆1,381Updated 2 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆511Updated 2 years ago
• jmdx / TLS-poison
  ☆684Updated last year
• DataDog / security-labs-pocs
  Proof of concept code for Datadog Security Labs referenced exploits.
  ☆417Updated last year