hextreeio / android-webview-research
This app runs various webview tests to explore the attack surface and exploit techniques
☆14Updated 2 months ago
Alternatives and similar repositories for android-webview-research:
Users that are interested in android-webview-research are comparing it to the libraries listed below
- Awesome MXSS ??☆48Updated 5 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆152Updated 7 months ago
- A list of bizarre crackmes☆109Updated 2 weeks ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆180Updated last month
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆126Updated this week
- Challenges I wrote for various CTF competitions☆40Updated 8 months ago
- Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly☆48Updated 2 years ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆134Updated 3 months ago
- Oversecured Vulnerable iOS App☆219Updated last year
- ☆83Updated 9 months ago
- A Proof of Concept for demonstrating Task hijacking in Android using an attacker and a victim app.☆41Updated 3 years ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆84Updated 3 months ago
- This repository explain how to write frida hook scripts and analysis written hooks.☆81Updated last year
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆241Updated 3 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆156Updated 11 months ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Updated last year
- Same Origin XSS challenge☆56Updated 2 years ago
- Beetlebug is an open source insecure Android application with CTF challenges built for Android Penetration Testers and Bug Bounty hunters…☆104Updated last year
- Slides and videos from my public speeches / conferences☆73Updated 3 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆64Updated last year
- A burp for intents wannabe☆65Updated 7 months ago
- ☆184Updated 4 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆133Updated 8 months ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆272Updated 7 months ago
- All challenges from DiceCTF 2023☆72Updated 2 years ago
- Intentionally vulnerable webview implementions in Android☆56Updated 2 years ago
- ☆101Updated last year