engn33r / awesome-redos-security
List of RegEx DoS (ReDoS) CVEs and resources
☆23Updated last year
Related projects: ⓘ
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆43Updated 9 months ago
- ☆54Updated 3 years ago
- ☆69Updated 2 years ago
- This repo contains solution for ctf challenges☆31Updated 8 months ago
- Content-Security-Policy (CSP) Bypass Techniques☆39Updated 3 years ago
- A tool which helps identifying client-side prototype polluting libraries☆35Updated 4 months ago
- Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security☆87Updated 6 months ago
- SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients☆70Updated 3 years ago
- Searcher for cross-site leaks (XS-Leaks)☆81Updated last year
- A cheatsheet for exploiting server-side SVG rasterization.☆29Updated 2 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆46Updated 2 months ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆43Updated 2 years ago
- List all public repositories for (valid) GitHub usernames☆67Updated 11 months ago
- Playground☆28Updated 3 months ago
- Resources for Browser Security Research☆21Updated 2 years ago
- ☆14Updated 3 years ago
- Client-Side Prototype Pollution Tools☆84Updated 2 years ago
- Same Origin XSS challenge☆56Updated 2 years ago
- Dependency Confusion Security Testing Tool☆39Updated 2 years ago
- ☆49Updated 4 years ago
- No longer maintained. Timing attacks on a browsers cache to try to predict websites/subreddits that have been viewed☆10Updated 2 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆26Updated 3 years ago
- Collection of ProjectDiscovery wallpapers☆28Updated 10 months ago
- an Evil Java RMI Registry.☆44Updated last year
- static sites for blog.orange.tw☆18Updated this week
- a repository of all the CTF challenges I've made for public events☆44Updated last year
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆54Updated last year
- Make better use of the embedded browser that comes by default with Burp☆38Updated 8 months ago
- ☆23Updated 6 months ago
- *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.☆13Updated 2 years ago