google / csp-evaluator

Related projects ⓘ

Alternatives and complementary repositories for csp-evaluator

• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆210Updated last month
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆231Updated this week
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆155Updated 9 months ago
• securitum / research
  research
  ☆150Updated 8 months ago
• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆606Updated this week
• xsleaks / wiki
  XS-Leaks Wiki
  ☆150Updated 3 months ago
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆286Updated 6 years ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆231Updated 6 years ago
• d0nutptr / sic
  A tool to perform Sequential Import Chaining
  ☆254Updated 5 years ago
• taviso / rbndr
  Simple DNS Rebinding Service
  ☆627Updated 4 years ago
• xsleaks / xsleaks
  A collection of browser-based side channel attack vectors.
  ☆740Updated 8 months ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆515Updated 5 months ago
• neex / http2smugl
  ☆528Updated 11 months ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆95Updated 4 years ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆518Updated 6 years ago
• justinsteven / advisories
  ☆266Updated last year
• filedescriptor / untrusted-types
  ☆655Updated 2 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆197Updated last year
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆316Updated 2 weeks ago
• superhuman / rxxr2
  ☆141Updated last year
• WICG / sanitizer-api
  ☆228Updated 2 months ago
• PortSwigger / http-request-smuggler
  ☆958Updated 11 months ago
• mpgn / ByP-SOP
  🏴‍☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴‍☠️
  ☆196Updated 5 years ago
• PortSwigger / param-miner
  ☆1,245Updated last week
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆107Updated 5 years ago
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆701Updated 3 months ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆308Updated last year
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆280Updated 4 months ago
• sectooladdict / wavsep
  The Web Application Vulnerability Scanner Evaluation Project
  ☆228Updated 2 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆405Updated this week