jackfromeast/dom-clobbering-collection external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jackfromeast/dom-clobbering-collection

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jackfromeast/dom-clobbering-collection)

Close

jackfromeast / dom-clobbering-collectionView on GitHubMore

• External links
• Readme badge

A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.

☆48Aug 31, 2025Updated 6 months ago

Alternatives and similar repositories for dom-clobbering-collection

Users that are interested in dom-clobbering-collection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jackfromeast / TheHulk

  View on GitHub
  TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.
  ☆91Aug 25, 2025Updated 7 months ago
• msrkp / MXSS

  View on GitHub
  Awesome MXSS ??
  ☆56Sep 30, 2024Updated last year
• TheGrandPew / Sanity

  View on GitHub
  ☆17Jul 31, 2021Updated 4 years ago
• kevin-mizu / GMSGadget

  View on GitHub
  This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…
  ☆134Feb 4, 2026Updated last month
• Slonser / hui

  View on GitHub
  HTML Universal Identifier
  ☆65Dec 15, 2024Updated last year
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• terjanq / XSS-Challenge-Solutions

  View on GitHub
  This repository is an interactive collection of my solutions to various XSS challenges.
  ☆13Oct 25, 2020Updated 5 years ago
• kevin-mizu / bot-ctf-template

  View on GitHub
  ☆31Jan 31, 2026Updated last month
• splitline / DOM-Clobber3r

  View on GitHub
  Generate DOM clobbering attack vectors for you.
  ☆35Jun 3, 2025Updated 9 months ago
• ZetaTwo / potluckctf

  View on GitHub
  Infrastructure for the Potluck CTF
  ☆25Mar 11, 2024Updated 2 years ago
• KTH-LangSec / silent-spring

  View on GitHub
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆75Jan 21, 2024Updated 2 years ago
• masatokinugawa / css-exfiltration-svg-font

  View on GitHub
  ☆17Nov 28, 2021Updated 4 years ago
• reewardius / nuclei-fast-templates

  View on GitHub
  ☆16Jan 23, 2026Updated 2 months ago
• sigpwny / UIUCTF-2024-Public

  View on GitHub
  Monorepo for challenges, infra, and theming for UIUCTF 2024 (https://2024.uiuc.tf/)
  ☆17Jul 14, 2024Updated last year
• terjanq / Easter-xss-challenge

  View on GitHub
  Inti easter challenge poc
  ☆18May 4, 2021Updated 4 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• developer-guy / falco-the-kubernetes-response-engine-using-openfaas-functions

  View on GitHub
  Demonstrating how you can take an action to your intrusions detected by Falco using OpenFaaS functions
  ☆26Mar 24, 2021Updated 5 years ago
• ambionics / lightyear

  View on GitHub
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆112Jun 23, 2025Updated 9 months ago
• KTH-LangSec / server-side-prototype-pollution

  View on GitHub
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆228Feb 6, 2025Updated last year
• aszx87410 / cdnjs-prototype-pollution

  View on GitHub
  Find all libraries on cdn.js that pollute your prototype
  ☆19Sep 1, 2022Updated 3 years ago
• renniepak / CSPBypass

  View on GitHub
  CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…
  ☆628Mar 22, 2026Updated last week
• ElSicarius / Supp-truder

  View on GitHub
  Supertruder but better
  ☆31Mar 10, 2023Updated 3 years ago
• erickfernandox / nuclei-templates

  View on GitHub
  ☆15May 8, 2025Updated 10 months ago
• nodyhub / zipslipper

  View on GitHub
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Sep 20, 2024Updated last year
• jailctf / challenges-2024

  View on GitHub
  challenges 2024 woohoo
  ☆22Sep 19, 2024Updated last year
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• WangYihang / Subdomain-Crawler

  View on GitHub
  A program for collecting subdomains of a list of given second-level domains (SLD)
  ☆15Feb 10, 2026Updated last month
• masatokinugawa / ShadowBreakers

  View on GitHub
  ☆50Aug 2, 2025Updated 7 months ago
• Yassine-Latreche / Write-Ups

  View on GitHub
  ☆10Jun 29, 2022Updated 3 years ago
• strellic / my-ctf-challenges

  View on GitHub
  a repository of all the CTF challenges I've made for public events
  ☆63Jul 30, 2025Updated 8 months ago
• charisma334 / how-to-pwn-xyz

  View on GitHub
  Repo containing walkthroughs to possibly pwn Admin Panels and Exposed Consoles
  ☆17Sep 20, 2024Updated last year
• dk4trin / templates-nuclei

  View on GitHub
  ☆20May 25, 2025Updated 10 months ago
• fast-sp-2023 / fast

  View on GitHub
  ☆32May 1, 2025Updated 10 months ago
• felipecaon / wpsechelper

  View on GitHub
  Seecurity helper tool to detect entry points of WordPress plugins
  ☆10May 16, 2024Updated last year
• GDGAlgiers / discord.js-bot-template

  View on GitHub
  ☆11Feb 3, 2022Updated 4 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• erickfernandox / slicepathsurl

  View on GitHub
  A tool to slice URLs into directory levels
  ☆19Jan 16, 2026Updated 2 months ago
• BrunoHalltari / CTF-Writeups

  View on GitHub
  Here i will post my writeups :)
  ☆33Dec 9, 2022Updated 3 years ago
• BlackFan / client-side-prototype-pollution

  View on GitHub
  Prototype Pollution and useful Script Gadgets
  ☆1,601Jan 27, 2024Updated 2 years ago
• ixSly / sCSSLeak

  View on GitHub
  CSS injection requires an attacker to load a standalone CSS file to leak HTML tag attributes.
  ☆21Apr 19, 2024Updated last year
• bjrjk / js-vuln-studies

  View on GitHub
  A collection of in-depth studies authored by me on JavaScript engine vulnerabilities.
  ☆49Feb 6, 2026Updated last month
• Static-Flow / BOR

  View on GitHub
  BOR - Break On Request, is a burp extension that provides a custom context menu for marking requests to be stopped by the interceptor wit…
  ☆13Nov 18, 2022Updated 3 years ago
• SoheilKhodayari / DOMClobbering

  View on GitHub
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆61Dec 18, 2025Updated 3 months ago