kiwicom / xssable
A vulnerable blogging platform used to demonstrate XSS vulnerabilities.
☆9Updated 9 months ago
Related projects: ⓘ
- Firewall bypass script based on shodan search results☆13Updated 5 years ago
- Payload encoder for bypass WAF☆16Updated 5 years ago
- Maintaining account persistence via XSS and Oauth☆74Updated 5 years ago
- ☆18Updated 6 years ago
- Burp Suite extension to help make Graphql request more readable☆29Updated 6 years ago
- A Go implementation of dirsearch.☆44Updated 5 years ago
- ☆39Updated 6 years ago
- ☆16Updated 6 years ago
- DirBuster for Node.js☆18Updated 5 years ago
- Simple webinterface combining different recon tools.☆12Updated 6 years ago
- A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.☆43Updated 4 years ago
- A better dns bruteforcer written in golang☆13Updated 5 years ago
- ☆19Updated 6 years ago
- automated penetration toolkit☆12Updated 8 years ago
- An example of high-QPS requesting Burp Intruder style on AWS Lambda via self-invocation.☆22Updated 5 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆29Updated 6 years ago
- WAF Exploitation Framework☆13Updated last year
- Reconstruct javascript from a sourcemap in bash☆37Updated 2 years ago
- View screenshots as a slideshow over http☆15Updated 4 years ago
- URL-encode data streams via commandline☆14Updated 4 years ago
- ☆12Updated this week
- Check for know iframeBuster XSS☆10Updated 4 months ago
- Scrap Latest Information Security Resources☆31Updated 3 years ago
- ☆15Updated this week
- s3eker is an extensible way to find open S3 buckets.☆17Updated 4 years ago
- patched information leak leaking full names associated with some email addresses including but not limited to gmail☆36Updated 3 years ago
- ☆19Updated this week
- CVE-2020-5902☆9Updated 4 years ago
- Directory Fuzzer for Pentesting and Host Recon☆27Updated 5 years ago