jackfromeast / dom-clobbering-collectionLinks
A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.
☆16Updated 2 months ago
Alternatives and similar repositories for dom-clobbering-collection
Users that are interested in dom-clobbering-collection are comparing it to the libraries listed below
Sorting:
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆14Updated 3 weeks ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆65Updated last year
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆49Updated last year
- Testability Pattern Catalogs for SAST☆30Updated 3 months ago
- Artifact for ICSE 2023☆49Updated 2 years ago
- ☆19Updated 6 years ago
- FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)☆10Updated 6 months ago
- YuraScanner☆42Updated 3 months ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆107Updated 5 months ago
- CodeQL zero to hero blog post series challenges☆122Updated 5 months ago
- ☆28Updated 2 years ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆24Updated 3 years ago
- Generate DOM clobbering attack vectors for you.☆34Updated this week
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆153Updated last year
- Find all libraries on cdn.js that pollute your prototype☆18Updated 2 years ago
- Awesome MXSS ??☆50Updated 8 months ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆45Updated 2 years ago
- ☆25Updated 2 years ago
- public archive for corCTF 2022☆35Updated 2 years ago
- ☆16Updated 2 years ago
- This repository is a one-stop shop for diving deep into the fascinating world of mXSS (mutations caused by browser quirks in HTML parsing…☆22Updated 3 months ago
- A framework for identifying vulnerabilities in VS Code extensions☆18Updated 10 months ago
- ☆29Updated last month
- Mini-program Cross Page Request Forgery (MiniCPRF) Analysis Tool.☆16Updated 7 months ago
- a repository of all the CTF challenges I've made for public events☆53Updated last year
- Collect public CTF source code repo☆45Updated 3 years ago
- AI chromium security wiki☆25Updated last month
- Same Origin XSS challenge☆61Updated 3 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆35Updated 5 years ago