jackfromeast/dom-clobbering-collection external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jackfromeast/dom-clobbering-collection

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jackfromeast/dom-clobbering-collection)

Close

jackfromeast / dom-clobbering-collectionView on GitHubMore

• External links
• Readme badge

A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.

☆50Aug 31, 2025Updated 8 months ago

Alternatives and similar repositories for dom-clobbering-collection

Users that are interested in dom-clobbering-collection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jackfromeast / TheHulk

  View on GitHub
  TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.
  ☆94Aug 25, 2025Updated 9 months ago
• msrkp / MXSS

  View on GitHub
  Awesome MXSS ??
  ☆57Sep 30, 2024Updated last year
• arxenix / phpfuck

  View on GitHub
  phpfuck: using only 5 different characters to write and execute php // (^.9)
  ☆20Nov 26, 2021Updated 4 years ago
• TheGrandPew / Sanity

  View on GitHub
  ☆17Jul 31, 2021Updated 4 years ago
• SoheilKhodayari / TheThing

  View on GitHub
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆57Oct 25, 2023Updated 2 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• SECCON / SECCON2023_final_CTF

  View on GitHub
  ☆12Jan 10, 2024Updated 2 years ago
• kevin-mizu / GMSGadget

  View on GitHub
  This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…
  ☆142Feb 4, 2026Updated 3 months ago
• Slonser / hui

  View on GitHub
  HTML Universal Identifier
  ☆68Dec 15, 2024Updated last year
• terjanq / XSS-Challenge-Solutions

  View on GitHub
  This repository is an interactive collection of my solutions to various XSS challenges.
  ☆13Oct 25, 2020Updated 5 years ago
• kevin-mizu / bot-ctf-template

  View on GitHub
  ☆33Jan 31, 2026Updated 3 months ago
• splitline / DOM-Clobber3r

  View on GitHub
  Generate DOM clobbering attack vectors for you.
  ☆35Jun 3, 2025Updated 11 months ago
• ZetaTwo / potluckctf

  View on GitHub
  Infrastructure for the Potluck CTF
  ☆25Mar 11, 2024Updated 2 years ago
• KTH-LangSec / silent-spring

  View on GitHub
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆75Jan 21, 2024Updated 2 years ago
• masatokinugawa / css-exfiltration-svg-font

  View on GitHub
  ☆17Nov 28, 2021Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• wrmelicher / ChromiumTaintTracking

  View on GitHub
  ☆18Dec 2, 2018Updated 7 years ago
• reewardius / nuclei-fast-templates

  View on GitHub
  ☆20Apr 27, 2026Updated last month
• sigpwny / UIUCTF-2024-Public

  View on GitHub
  Monorepo for challenges, infra, and theming for UIUCTF 2024 (https://2024.uiuc.tf/)
  ☆17Jul 14, 2024Updated last year
• terjanq / Easter-xss-challenge

  View on GitHub
  Inti easter challenge poc
  ☆17May 4, 2021Updated 5 years ago
• developer-guy / falco-the-kubernetes-response-engine-using-openfaas-functions

  View on GitHub
  Demonstrating how you can take an action to your intrusions detected by Falco using OpenFaaS functions
  ☆26Mar 24, 2021Updated 5 years ago
• ambionics / lightyear

  View on GitHub
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆112Jun 23, 2025Updated 11 months ago
• KTH-LangSec / server-side-prototype-pollution

  View on GitHub
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆230Feb 6, 2025Updated last year
• aszx87410 / cdnjs-prototype-pollution

  View on GitHub
  Find all libraries on cdn.js that pollute your prototype
  ☆19Sep 1, 2022Updated 3 years ago
• jailctf / pyjailbreaker

  View on GitHub
  Python sandbox escape wiki + payload generator
  ☆145Sep 18, 2024Updated last year
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• botesjuan / API-Web-Security

  View on GitHub
  API Security University & PortSwigger Academy Study Notes
  ☆24Nov 13, 2025Updated 6 months ago
• ElSicarius / Supp-truder

  View on GitHub
  Supertruder but better
  ☆31Mar 10, 2023Updated 3 years ago
• erickfernandox / nuclei-templates

  View on GitHub
  ☆15May 8, 2025Updated last year
• renniepak / CSPBypass

  View on GitHub
  CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…
  ☆656May 19, 2026Updated last week
• nodyhub / zipslipper

  View on GitHub
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Sep 20, 2024Updated last year
• jailctf / challenges-2024

  View on GitHub
  challenges 2024 woohoo
  ☆22Sep 19, 2024Updated last year
• masatokinugawa / ShadowBreakers

  View on GitHub
  ☆51Aug 2, 2025Updated 9 months ago
• WangYihang / Subdomain-Crawler

  View on GitHub
  A program for collecting subdomains of a list of given second-level domains (SLD)
  ☆15Feb 10, 2026Updated 3 months ago
• Yassine-Latreche / Write-Ups

  View on GitHub
  ☆10Jun 29, 2022Updated 3 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• RapidResponseBench / rapidresponsebench

  View on GitHub
  ☆34Nov 12, 2024Updated last year
• strellic / my-ctf-challenges

  View on GitHub
  a repository of all the CTF challenges I've made for public events
  ☆63Jul 30, 2025Updated 10 months ago
• dk4trin / templates-nuclei

  View on GitHub
  ☆21May 25, 2025Updated last year
• felipecaon / wpsechelper

  View on GitHub
  Seecurity helper tool to detect entry points of WordPress plugins
  ☆10May 16, 2024Updated 2 years ago
• BrunoHalltari / CTF-Writeups

  View on GitHub
  Here i will post my writeups :)
  ☆33Dec 9, 2022Updated 3 years ago
• TechieNeurons / CVE-2024-3116_RCE_in_pgadmin_8.4

  View on GitHub
  Making a lab and testing the CVE-2024-3116, a Remote Code Execution in pgadmin <=8.4
  ☆12Apr 11, 2024Updated 2 years ago
• m0kr4n3 / client-side-workshop-Bsides-2021

  View on GitHub
  The content of the workshop Client-side web security for Bsides 2021 event, held by @m0kr4n3 and @ouxs-19 at ESI algiers.
  ☆13Jan 8, 2022Updated 4 years ago