Alternatives and similar repositories for awesome-redos-security:

Users that are interested in awesome-redos-security are comparing it to the libraries listed below

• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆48Updated 4 months ago
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆45Updated last year
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 3 years ago
• jackj07 / Response-Pattern-Matcher
  Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…
  ☆15Updated last year
• RenwaX23 / X
  Playground
  ☆28Updated last week
• strellic / my-ctf-challenges
  a repository of all the CTF challenges I've made for public events
  ☆54Updated last year
• projectdiscovery / subfinder-action
  Fast and passive subdomain enumeration.
  ☆17Updated 2 years ago
• vin01 / poc-cve-2024-38396
  PoC for iTerm2 CVEs CVE-2024-38396 and CVE-2024-38395 which allow code execution
  ☆19Updated 9 months ago
• defparam / haptyc
  ☆94Updated 3 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated 2 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 3 years ago
• CaptainFreak / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 4 years ago
• scipag / websocket_fuzzer
  Simple WebSocket fuzzer
  ☆32Updated last year
• orangetw / blog.orange.tw
  static sites for blog.orange.tw
  ☆22Updated 3 weeks ago
• acuciureanu / ppfang
  A tool which helps identifying client-side prototype polluting libraries
  ☆38Updated last week
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• bahruzjabiyev / gudifu-fuzzer
  Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
  ☆17Updated last year
• NDevTK / CacheAttack
  No longer maintained. Timing attacks on a browsers cache to try to predict websites/subreddits that have been viewed
  ☆11Updated 3 years ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆70Updated 3 years ago
• johnsaigle / scary-strings
  Collection of wordlists containing dangerous function calls in many languages
  ☆26Updated last month
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆29Updated 5 years ago
• minamo7sen / burp-JS-Miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆56Updated last year
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆47Updated 2 years ago
• JavanXD / Raceocat
  Make exploiting race conditions in web applications highly efficient and ease-of-use.
  ☆23Updated 11 months ago
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• yuriisanin / svg2raster-cheatsheet
  A cheatsheet for exploiting server-side SVG rasterization.
  ☆30Updated 2 years ago
• satishpatnayak / ScanAndroidXML
  Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly
  ☆48Updated 2 years ago
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆58Updated last year
• k00kx / nuclei-templates
  Reversing Citrix Gateway for XSS
  ☆17Updated last year
• TheGrandPew / Sanity
  ☆15Updated 3 years ago