hextreeio / android-webview-researchLinks
This app runs various webview tests to explore the attack surface and exploit techniques
☆19Updated 8 months ago
Alternatives and similar repositories for android-webview-research
Users that are interested in android-webview-research are comparing it to the libraries listed below
Sorting:
- PP-finder Help you find gadget for prototype pollution exploitation☆178Updated last year
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆301Updated last year
- ☆88Updated last year
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆171Updated last year
- A collection of Server-Side Prototype Pollution gadgets and exploits☆207Updated 8 months ago
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆222Updated 3 months ago
- Awesome MXSS ??☆53Updated last year
- This repository contains a number of insecure self-hosted applications that allows interested security engineers to test vulnerabilities …☆25Updated 5 months ago
- Scripts and examples for "From Day Zero to Zero Day" by Eugene Lim.☆156Updated last month
- Oversecured Vulnerable iOS App☆230Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆148Updated 9 months ago
- ☆77Updated 3 months ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆248Updated 3 years ago
- Checks if an Android application has successfully completed the "App Link Verification" process for Android App Links.☆61Updated last year
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆193Updated 4 months ago
- A burp for intents wannabe☆71Updated last year
- Challenges I wrote for various CTF competitions☆44Updated last year
- ☆21Updated last year
- Beetlebug is an open source insecure Android application with CTF challenges built for Android Penetration Testers and Bug Bounty hunters…☆115Updated 2 years ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆93Updated 9 months ago
- ☆200Updated 11 months ago
- ☆118Updated last year
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆204Updated 2 months ago
- ☆184Updated 11 months ago
- ☆418Updated 4 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- HTTP redirection service designed to help bypass SSRF filters. Integrated with Burp Suite.☆50Updated 3 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆138Updated 6 months ago
- ☆79Updated this week
- A tool to inspect and attack version 1 GUIDs☆235Updated 2 years ago