Alternatives and similar repositories for csp-evaluator:

Users that are interested in csp-evaluator are comparing it to the libraries listed below

• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆217Updated last week
• xsleaks / wiki
  XS-Leaks Wiki
  ☆159Updated 2 months ago
• xsleaks / xsleaks
  A collection of browser-based side channel attack vectors.
  ☆745Updated last year
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆522Updated 10 months ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆203Updated 9 months ago
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆292Updated 7 years ago
• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆616Updated 3 weeks ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆234Updated 6 years ago
• securitum / research
  research
  ☆151Updated last year
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆526Updated 6 years ago
• neex / http2smugl
  ☆536Updated last week
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆160Updated last year
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆417Updated 4 months ago
• superhuman / rxxr2
  ☆143Updated 2 years ago
• taviso / rbndr
  Simple DNS Rebinding Service
  ☆649Updated 5 years ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆347Updated 2 years ago
• filedescriptor / untrusted-types
  ☆675Updated 2 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆202Updated 2 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 4 years ago
• mpgn / ByP-SOP
  🏴‍☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴‍☠️
  ☆199Updated 6 years ago
• d0nutptr / sic
  A tool to perform Sequential Import Chaining
  ☆262Updated 5 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆403Updated this week
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆462Updated 7 months ago
• chenjj / CORScanner
  🎯 Fast CORS misconfiguration vulnerabilities scanner
  ☆1,064Updated 3 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆353Updated 7 months ago
• nccgroup / CrossSiteContentHijacking
  Content hijacking proof-of-concept using Flash, PDF and Silverlight
  ☆381Updated 5 years ago
• nccgroup / singularity
  A DNS rebinding attack framework.
  ☆1,072Updated 3 weeks ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆392Updated 7 years ago
• PortSwigger / http-request-smuggler
  ☆980Updated 2 months ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆313Updated last year