dxa4481 / cssInjectionLinks
Stealing CSRF tokens with CSS injection (without iFrames)
☆322Updated 7 years ago
Alternatives and similar repositories for cssInjection
Users that are interested in cssInjection are comparing it to the libraries listed below
Sorting:
- DNS Rebinding Exploitation Framework☆490Updated 4 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆276Updated 4 years ago
- Local Privilege Escalation☆207Updated 8 years ago
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆227Updated 7 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆168Updated 2 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- Brosec - An interactive reference tool to help security professionals utilize useful payloads and commands.☆355Updated 2 years ago
- An exploit for Apache Struts CVE-2018-11776☆302Updated 6 years ago
- A tool to find and exploit servers vulnerable to Shellshock☆333Updated 2 years ago
- [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd☆192Updated 9 years ago
- ☆181Updated 11 years ago
- ⚠️WARNING: This project now become part of https://github.com/j3ssie/Metabigor project☆178Updated 5 years ago
- An automated XSS payload generator written in python.☆315Updated 9 years ago
- ☆206Updated 4 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆135Updated 8 years ago
- Various Tools and Docker Images☆280Updated last month
- 🔥🔥🔥 Out of the Browser into the Fire - Cross platform XSS worm framework 🔥🔥🔥☆134Updated 8 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆256Updated last month
- Use your Shodan API Key to dump all the contents of exposed memcached servers.☆141Updated 7 years ago
- ☆325Updated 7 years ago
- Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution☆391Updated 7 years ago
- Project "Flashbang" - An open-source Flash-security helper☆205Updated 10 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆141Updated 8 years ago
- Github for the scripts utilised during Penetration test☆235Updated 8 years ago
- Orc is a post-exploitation framework for Linux written in Bash☆395Updated 5 years ago
- Automates some pentest jobs via nmap xml file☆323Updated 6 years ago
- You're a #pentester and you totally pwn that linux box, congrats! Now what? You can launch gimmecredz.sh which will try to extract all p…☆169Updated 5 years ago
- A tiny and cute URL fuzzer☆395Updated 2 years ago
- Nameserver DNS poisoning attacks made easy☆523Updated 8 years ago