☆123Dec 6, 2023Updated 2 years ago
Alternatives and similar repositories for blind-css-exfiltration
Users that are interested in blind-css-exfiltration are comparing it to the libraries listed below
Sorting:
- ☆31Jan 31, 2026Updated last month
- PoC for leaking text nodes via CSS injection☆25Jul 27, 2024Updated last year
- ☆41Nov 15, 2025Updated 3 months ago
- This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…☆132Feb 4, 2026Updated 3 weeks ago
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆62Jun 27, 2025Updated 8 months ago
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆772Dec 9, 2025Updated 2 months ago
- Extension to log postMessage()☆15Feb 17, 2026Updated last week
- Differential testing framework for HTTP implementations☆927Jan 21, 2026Updated last month
- PP-finder Help you find gadget for prototype pollution exploitation☆189Aug 8, 2024Updated last year
- Bambdas collection for Burp Suite Professional and Community.☆495Feb 10, 2026Updated 2 weeks ago
- CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…☆579Feb 20, 2026Updated last week
- ☆93Dec 4, 2025Updated 2 months ago
- Prototype Pollution and useful Script Gadgets☆1,584Jan 27, 2024Updated 2 years ago
- Find all libraries on cdn.js that pollute your prototype☆19Sep 1, 2022Updated 3 years ago
- CVE-2022-39227 : Proof of Concept☆22Mar 19, 2024Updated last year
- A collection of Server-Side Prototype Pollution gadgets and exploits☆223Feb 6, 2025Updated last year
- ☆42Nov 5, 2025Updated 3 months ago
- ☆63Mar 1, 2023Updated 2 years ago
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …☆47Dec 10, 2025Updated 2 months ago
- Obtain GraphQL API schema even if the introspection is disabled☆1,387Dec 5, 2025Updated 2 months ago
- Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection☆459Sep 9, 2025Updated 5 months ago
- Useful configurations for the DomLogger++ extension☆48Sep 7, 2024Updated last year
- Farm-to-table, organic, handcrafted, delicious Webassembly☆14Dec 7, 2021Updated 4 years ago
- Curated UTF-8 URL-encoded character dictionary for injection testing, fuzzing, and bypass techniques against web applications and APIs, f…☆13Sep 20, 2021Updated 4 years ago
- Content-Type Research☆657Jun 29, 2025Updated 7 months ago
- OWASP Foundation Web Respository☆26Oct 11, 2025Updated 4 months ago
- ☆79Mar 26, 2024Updated last year
- Unleash the power of cloud☆818Nov 19, 2024Updated last year
- Werkzeug password cracker☆18Nov 14, 2024Updated last year
- Security Blogs - A simple aggregator for security news/blog☆24Jan 19, 2026Updated last month
- A python based minimal DNS server to test/verify DNS rebinding attacks☆70May 15, 2023Updated 2 years ago
- BSQLi de coffinxp réécrie en GO, son repos a été reporté en masse, il a donc été fermé.☆13Jul 26, 2024Updated last year
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆16Jul 17, 2024Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆750Dec 19, 2023Updated 2 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,268Updated this week
- An IIS short filename enumeration tool☆1,123Nov 25, 2024Updated last year
- Filter and enrich a list of subdomains by level☆210Sep 25, 2023Updated 2 years ago
- Automated GitHub secret scanning with smart alerting & monitoring.☆30Jan 15, 2026Updated last month
- Custom Trickest Workflows☆12Oct 26, 2023Updated 2 years ago