google / csp-evaluator
☆350Updated last month
Alternatives and similar repositories for csp-evaluator:
Users that are interested in csp-evaluator are comparing it to the libraries listed below
- WebAppSec Content Security Policy☆217Updated last week
- XS-Leaks Wiki☆159Updated 2 months ago
- A collection of browser-based side channel attack vectors.☆745Updated last year
- Content released at NorthSec 2018 for my talk on prototype pollution☆522Updated 10 months ago
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆203Updated 9 months ago
- Cure53 Browser Security White Paper☆292Updated 7 years ago
- A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.☆616Updated 3 weeks ago
- The request.bin of DNS request☆234Updated 6 years ago
- research☆151Updated last year
- Automatically exported from code.google.com/p/domxsswiki☆526Updated 6 years ago
- ☆536Updated last week
- Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …☆160Updated last year
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆417Updated 4 months ago
- ☆143Updated 2 years ago
- Simple DNS Rebinding Service☆649Updated 5 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆347Updated 2 years ago
- ☆675Updated 2 years ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆202Updated 2 years ago
- A Node.js vulnerability finding tool.☆96Updated 4 years ago
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆199Updated 6 years ago
- A tool to perform Sequential Import Chaining☆262Updated 5 years ago
- DOM XSS scanner for Single Page Applications☆403Updated this week
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆462Updated 7 months ago
- 🎯 Fast CORS misconfiguration vulnerabilities scanner☆1,064Updated 3 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆353Updated 7 months ago
- Content hijacking proof-of-concept using Flash, PDF and Silverlight☆381Updated 5 years ago
- A DNS rebinding attack framework.☆1,072Updated 3 weeks ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆392Updated 7 years ago
- ☆980Updated 2 months ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆313Updated last year