jackfromeast/dom-clobbering-collection external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jackfromeast/dom-clobbering-collection

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jackfromeast/dom-clobbering-collection)

Close

jackfromeast / dom-clobbering-collectionView on GitHubMore

• External links
• Readme badge

A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.

☆49Aug 31, 2025Updated 8 months ago

Alternatives and similar repositories for dom-clobbering-collection

Users that are interested in dom-clobbering-collection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jackfromeast / TheHulk

  View on GitHub
  TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.
  ☆92Aug 25, 2025Updated 8 months ago
• arxenix / phpfuck

  View on GitHub
  phpfuck: using only 5 different characters to write and execute php // (^.9)
  ☆20Nov 26, 2021Updated 4 years ago
• TheGrandPew / Sanity

  View on GitHub
  ☆17Jul 31, 2021Updated 4 years ago
• kevin-mizu / GMSGadget

  View on GitHub
  This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…
  ☆140Feb 4, 2026Updated 3 months ago
• Slonser / hui

  View on GitHub
  HTML Universal Identifier
  ☆68Dec 15, 2024Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• terjanq / XSS-Challenge-Solutions

  View on GitHub
  This repository is an interactive collection of my solutions to various XSS challenges.
  ☆13Oct 25, 2020Updated 5 years ago
• kevin-mizu / bot-ctf-template

  View on GitHub
  ☆32Jan 31, 2026Updated 3 months ago
• splitline / DOM-Clobber3r

  View on GitHub
  Generate DOM clobbering attack vectors for you.
  ☆35Jun 3, 2025Updated 11 months ago
• ZetaTwo / potluckctf

  View on GitHub
  Infrastructure for the Potluck CTF
  ☆25Mar 11, 2024Updated 2 years ago
• KTH-LangSec / silent-spring

  View on GitHub
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆75Jan 21, 2024Updated 2 years ago
• masatokinugawa / css-exfiltration-svg-font

  View on GitHub
  ☆17Nov 28, 2021Updated 4 years ago
• wrmelicher / ChromiumTaintTracking

  View on GitHub
  ☆18Dec 2, 2018Updated 7 years ago
• reewardius / nuclei-fast-templates

  View on GitHub
  ☆18Apr 27, 2026Updated last week
• sigpwny / UIUCTF-2024-Public

  View on GitHub
  Monorepo for challenges, infra, and theming for UIUCTF 2024 (https://2024.uiuc.tf/)
  ☆17Jul 14, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• terjanq / Easter-xss-challenge

  View on GitHub
  Inti easter challenge poc
  ☆17May 4, 2021Updated 5 years ago
• developer-guy / falco-the-kubernetes-response-engine-using-openfaas-functions

  View on GitHub
  Demonstrating how you can take an action to your intrusions detected by Falco using OpenFaaS functions
  ☆26Mar 24, 2021Updated 5 years ago
• ambionics / lightyear

  View on GitHub
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆112Jun 23, 2025Updated 10 months ago
• KTH-LangSec / server-side-prototype-pollution

  View on GitHub
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆230Feb 6, 2025Updated last year
• aszx87410 / cdnjs-prototype-pollution

  View on GitHub
  Find all libraries on cdn.js that pollute your prototype
  ☆19Sep 1, 2022Updated 3 years ago
• jailctf / pyjailbreaker

  View on GitHub
  Python sandbox escape wiki + payload generator
  ☆143Sep 18, 2024Updated last year
• botesjuan / API-Web-Security

  View on GitHub
  API Security University & PortSwigger Academy Study Notes
  ☆24Nov 13, 2025Updated 5 months ago
• ElSicarius / Supp-truder

  View on GitHub
  Supertruder but better
  ☆31Mar 10, 2023Updated 3 years ago
• erickfernandox / nuclei-templates

  View on GitHub
  ☆15May 8, 2025Updated last year
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• renniepak / CSPBypass

  View on GitHub
  CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…
  ☆650Updated this week
• nodyhub / zipslipper

  View on GitHub
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Sep 20, 2024Updated last year
• jailctf / challenges-2024

  View on GitHub
  challenges 2024 woohoo
  ☆22Sep 19, 2024Updated last year
• masatokinugawa / ShadowBreakers

  View on GitHub
  ☆51Aug 2, 2025Updated 9 months ago
• WangYihang / Subdomain-Crawler

  View on GitHub
  A program for collecting subdomains of a list of given second-level domains (SLD)
  ☆15Feb 10, 2026Updated 2 months ago
• Yassine-Latreche / Write-Ups

  View on GitHub
  ☆10Jun 29, 2022Updated 3 years ago
• strellic / my-ctf-challenges

  View on GitHub
  a repository of all the CTF challenges I've made for public events
  ☆63Jul 30, 2025Updated 9 months ago
• charisma334 / how-to-pwn-xyz

  View on GitHub
  Repo containing walkthroughs to possibly pwn Admin Panels and Exposed Consoles
  ☆17Sep 20, 2024Updated last year
• dk4trin / templates-nuclei

  View on GitHub
  ☆20May 25, 2025Updated 11 months ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• fast-sp-2023 / fast

  View on GitHub
  ☆31May 1, 2025Updated last year
• felipecaon / wpsechelper

  View on GitHub
  Seecurity helper tool to detect entry points of WordPress plugins
  ☆10May 16, 2024Updated last year
• GDGAlgiers / discord.js-bot-template

  View on GitHub
  ☆11Feb 3, 2022Updated 4 years ago
• BrunoHalltari / CTF-Writeups

  View on GitHub
  Here i will post my writeups :)
  ☆33Dec 9, 2022Updated 3 years ago
• TechieNeurons / CVE-2024-3116_RCE_in_pgadmin_8.4

  View on GitHub
  Making a lab and testing the CVE-2024-3116, a Remote Code Execution in pgadmin <=8.4
  ☆12Apr 11, 2024Updated 2 years ago
• m0kr4n3 / client-side-workshop-Bsides-2021

  View on GitHub
  The content of the workshop Client-side web security for Bsides 2021 event, held by @m0kr4n3 and @ouxs-19 at ESI algiers.
  ☆13Jan 8, 2022Updated 4 years ago
• BlackFan / client-side-prototype-pollution

  View on GitHub
  Prototype Pollution and useful Script Gadgets
  ☆1,617Jan 27, 2024Updated 2 years ago