hoodoer / postBasedXSS
Demo of various ways to exploit post based reflected XSS
☆18Updated last year
Alternatives and similar repositories for postBasedXSS:
Users that are interested in postBasedXSS are comparing it to the libraries listed below
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 6 months ago
- Simple Python script to sort nuclei scans by severity and URL☆29Updated last year
- Bcheck scripts for Burp☆25Updated 7 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆58Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆31Updated last week
- This repository presents a proof-of-concept of CVE-2024-23897☆15Updated 10 months ago
- Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰☆22Updated last year
- Burp extension used to snip any header from all the requests.☆22Updated last year
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆27Updated 6 months ago
- Ffuf output browser☆39Updated 2 years ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆27Updated 7 months ago
- Nuclei POC 模板☆10Updated 2 years ago
- A simple utility to generate domain names with all possible TLDs☆23Updated 2 years ago
- tool that generates bypasses for open redirects☆52Updated 2 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- ☆14Updated last year
- Template Nuclei SSTI☆29Updated last year
- ☆25Updated 2 years ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆25Updated 2 years ago
- 🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯☆24Updated last year
- PoC repository for CVE-2023-29007☆32Updated last year
- ☆27Updated 2 years ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- My talks...☆22Updated 2 weeks ago
- ☆19Updated 8 months ago
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆18Updated 2 years ago
- H&E- Burp Highlighter and Extractor☆18Updated last year
- your bestfried for finding LinkedIn Employees on github☆16Updated last year