fransr / postMessage-trackerLinks
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
☆1,175Updated last year
Alternatives and similar repositories for postMessage-tracker
Users that are interested in postMessage-tracker are comparing it to the libraries listed below
Sorting:
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆1,959Updated last year
- ☆678Updated 2 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,317Updated 8 months ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆978Updated 5 months ago
- Making Favicon.ico based Recon Great again !☆1,203Updated last year
- declutters url lists for crawling/pentesting☆1,377Updated 3 months ago
- List of XSS Vectors/Payloads☆1,231Updated 5 months ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆973Updated 11 months ago
- Prototype Pollution and useful Script Gadgets☆1,492Updated last year
- Automation for javascript recon in bug bounty.☆1,004Updated last year
- Burp plugin able to find reflected XSS on page in real-time while browsing on site☆1,157Updated 4 years ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆822Updated 2 years ago
- A fuzzer for detecting open redirect vulnerabilities☆752Updated 11 months ago
- Fetches javascript file from a list of URLS or subdomains.☆775Updated 2 years ago
- ☆1,333Updated last month
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆732Updated 2 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,265Updated 4 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆872Updated 3 years ago
- Content-Type Research☆620Updated last year
- Open Redirection Analyzer☆782Updated 2 years ago
- Subdomain takeover vulnerability checker☆1,247Updated 8 months ago
- Community curated list of public bug bounty and responsible disclosure programs.☆1,164Updated 2 weeks ago
- A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.☆711Updated last year
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,733Updated last year
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆961Updated 3 years ago
- 🎯 Open Redirect Payload List☆595Updated 10 months ago
- a javascript change monitoring tool for bugbounties☆648Updated 10 months ago
- Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,141Updated this week
- A Powerful Subdomain Takeover Tool☆952Updated last year
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,438Updated this week