JSON API's Are Automatically Protected Against CSRF, And Google Almost Took It Away.
☆34Jul 9, 2017Updated 8 years ago
Alternatives and similar repositories for CORS
Users that are interested in CORS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Serial Whitelist Application Trainer☆31Jul 7, 2019Updated 6 years ago
- A dashboard for interesting DOM tricks/techniques.☆35Dec 9, 2020Updated 5 years ago
- ☆14Mar 8, 2018Updated 8 years ago
- H&E- Burp Highlighter and Extractor☆18Mar 29, 2023Updated 3 years ago
- Simple XXE test suite generated specifically for SAML interfaces☆23May 18, 2018Updated 8 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- XLSX parser for nessus and nmap scan results.☆12Nov 22, 2019Updated 6 years ago
- BurpSuite Extension for performing scan via CLI.☆15Dec 5, 2017Updated 8 years ago
- AppImage bundled version xfreerdp with pass the hash function☆15Apr 17, 2018Updated 8 years ago
- A Scaleable and Asynchronous Framework for Testing Tools built on Kubernetes☆34Apr 22, 2017Updated 9 years ago
- Spring-Boot app for demonstrating security vulnaribilities☆13Aug 21, 2019Updated 6 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Mar 24, 2017Updated 9 years ago
- Web-Service for plato - JavaScript source code visualization, static analysis, and complexity tool☆19Dec 2, 2013Updated 12 years ago
- event shipper for Carbon Black Defense notifications☆10Feb 25, 2023Updated 3 years ago
- Nodejs application intentionally vulnerable to SSRF☆42May 12, 2023Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Abusing Self-XSS and Clickjacking to trigger XSS☆136Mar 18, 2017Updated 9 years ago
- ☆11Jul 16, 2018Updated 7 years ago
- S3 bucket enumerator☆43Dec 3, 2017Updated 8 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆141Feb 18, 2021Updated 5 years ago
- ☆72Nov 20, 2017Updated 8 years ago
- ☆29Jan 3, 2021Updated 5 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆258Feb 23, 2022Updated 4 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆64Feb 26, 2019Updated 7 years ago
- Golang io/fs implementation for Google Cloud Storage☆13Jan 20, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆57Feb 12, 2022Updated 4 years ago
- ☆11Feb 12, 2020Updated 6 years ago
- Fingerprint a web app using local files as the fingerprint sources☆39May 16, 2017Updated 9 years ago
- Kernel based auditing for Mac, BSD and Linux. Leverages the Audit Subsystem, OpenBSM (eventually) and Apple's Endpoint Security Framework☆12Mar 6, 2020Updated 6 years ago
- NMAP NSE that enumerates VNC authentication types☆17Dec 21, 2010Updated 15 years ago
- Presentations☆10Oct 2, 2017Updated 8 years ago
- File System Browser for iPhone☆34Feb 2, 2009Updated 17 years ago
- TLS Redirection☆118Nov 21, 2017Updated 8 years ago
- ☆13May 16, 2019Updated 7 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- First library produced from the Multiverse OS singularity experimental project, rewrite of the standard library exec to launch fileless e…☆10Apr 20, 2020Updated 6 years ago
- WaybackURLS + OtxURLS + CommonCrawl = The Best Results☆21Dec 7, 2019Updated 6 years ago
- Some crackme i built for Android☆10Apr 15, 2020Updated 6 years ago
- practice cmake☆17Oct 14, 2011Updated 14 years ago
- An nginx module to prevent generic compression oracles☆10Apr 24, 2026Updated last month
- tlsplayback is a set of Proof of Concepts (PoC) showing real-world replay attacks against TLS 1.3 libraries and browsers by exploiting 0-…☆16Aug 11, 2018Updated 7 years ago
- Example project demonstrating some kind of OpenSSL certificate pinning. Related to blogpost at TKTK showing how to bypass such pinning.☆19Jan 2, 2015Updated 11 years ago