gabemarshall / casperXSS
Reflective/DOM XSS scanner built on casperJS
☆81Updated 10 years ago
Related projects ⓘ
Alternatives and complementary repositories for casperXSS
- Hackerone disclosed report URL Aggregator☆29Updated 6 years ago
- [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …☆42Updated 5 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- A tiny chrome extension to record and replay your web application proof-of-concepts.☆20Updated 7 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 7 years ago
- Collection of tools for web recon and enumeration.☆56Updated 9 years ago
- Scans crossdomain.xml policies for expired domain names.☆25Updated 9 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- Tainted PhantomJS☆53Updated 9 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 7 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 8 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 7 years ago
- Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…☆67Updated 6 months ago
- A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.☆25Updated 9 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆39Updated 8 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 7 years ago
- REST/JSON interface to Burp Suite☆33Updated 4 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 7 years ago
- Exploit insecure crossdomain.xml files.☆26Updated 7 years ago
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆22Updated 6 years ago
- Demo server for testing Java deserialization payloads☆15Updated 8 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 10 years ago
- ☆13Updated 2 years ago
- Damn Small FI Scanner☆59Updated 5 years ago
- XXE vulnerability demo☆22Updated 10 years ago
- Deliberately vulnerable web application☆22Updated 7 years ago
- Collection of tools for privesc on Linux☆33Updated 11 years ago
- A collection of published exploits and proof-of-concept code.☆20Updated 6 years ago