JSON API's Are Automatically Protected Against CSRF, And Google Almost Took It Away.
☆34Jul 9, 2017Updated 8 years ago
Alternatives and similar repositories for CORS
Users that are interested in CORS are comparing it to the libraries listed below
Sorting:
- HTTP requests of FrontPage expolit☆25Dec 19, 2013Updated 12 years ago
- ☆14Mar 8, 2018Updated 7 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Jun 29, 2015Updated 10 years ago
- Spring-Boot app for demonstrating security vulnaribilities☆13Aug 21, 2019Updated 6 years ago
- BurpSuite Extension for performing scan via CLI.☆14Dec 5, 2017Updated 8 years ago
- H&E- Burp Highlighter and Extractor☆18Mar 29, 2023Updated 2 years ago
- ☆15Oct 8, 2025Updated 4 months ago
- Example project demonstrating some kind of OpenSSL certificate pinning. Related to blogpost at TKTK showing how to bypass such pinning.☆19Jan 2, 2015Updated 11 years ago
- Kernel assisted microcontainer packer☆24Feb 15, 2019Updated 7 years ago
- This is a Firefox WebExtension that monitors the browsing activity and automatically perform an automated XSS vulnerability scan by submi…☆18Jan 21, 2017Updated 9 years ago
- WaybackURLS + OtxURLS + CommonCrawl = The Best Results☆22Dec 7, 2019Updated 6 years ago
- Nodejs application intentionally vulnerable to SSRF☆42May 12, 2023Updated 2 years ago
- S3 bucket enumerator☆43Dec 3, 2017Updated 8 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Mar 24, 2017Updated 8 years ago
- A command line utility for managing Frida.☆23Jan 20, 2023Updated 3 years ago
- Simple XXE test suite generated specifically for SAML interfaces☆23May 18, 2018Updated 7 years ago
- GoWC - Wildcard cleaner for MassDNS☆24Jun 10, 2022Updated 3 years ago
- The repository for Building visualisation platforms for OSINT data using open source solutions☆29Aug 21, 2018Updated 7 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆136Mar 18, 2017Updated 8 years ago
- A curated GitHub repository that's in-scope and eligible for bounty.☆21Aug 10, 2022Updated 3 years ago
- Vulnerable webapp testbed☆24May 11, 2016Updated 9 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆64Feb 26, 2019Updated 7 years ago
- A Burp extension to show the Collaborator client in a tab☆24Dec 23, 2022Updated 3 years ago
- Conference Papers and Appendicies (USENIX Security, BlackHat, HITBSecConf, and BeVX)☆27Aug 6, 2023Updated 2 years ago
- Automatic VLAN configuration tool for Linux☆25Jan 24, 2019Updated 7 years ago
- Serial Whitelist Application Trainer☆30Jul 7, 2019Updated 6 years ago
- A Scaleable and Asynchronous Framework for Testing Tools built on Kubernetes☆34Apr 22, 2017Updated 8 years ago
- ☆28Jan 3, 2021Updated 5 years ago
- Scans packages in npm and pypi for secrets☆31Nov 4, 2019Updated 6 years ago
- intentionally vulnerable API☆30Sep 10, 2024Updated last year
- scripts☆10Aug 25, 2023Updated 2 years ago
- Informações extras referentes ao Treinamento Novo Pentest Profissional - https://desecsecurity.com/novo-pentest-profissional☆15May 13, 2023Updated 2 years ago
- A dashboard for interesting DOM tricks/techniques.☆35Dec 9, 2020Updated 5 years ago
- CVE-2020-2021☆22Oct 12, 2020Updated 5 years ago
- ☆72Nov 20, 2017Updated 8 years ago
- VyAPI - A cloud based vulnerable hybrid Android App☆86Feb 21, 2020Updated 6 years ago
- This repository houses the materials, slides and exercises from the r2con 2020 walkthrough sessions.☆38Sep 2, 2020Updated 5 years ago
- Tools of "The Bug Hunters Methodology V2 by @jhaddix"☆201Aug 11, 2017Updated 8 years ago
- Disposable Kali Linux containers for Mercury ISS / pentesting engagements.☆38Aug 21, 2019Updated 6 years ago