lvrosa / hacking-cors
Hacking HTTP CORS from inside out: a theory to practice approach
☆10Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for hacking-cors
- A companion repo to accompany detailed guides and YouTube content to allow users to follow along☆12Updated 4 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- HTTP requests of FrontPage expolit☆24Updated 10 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 2 years ago
- Burp Suite extension for extracting metadata from files☆19Updated 3 years ago
- A BurpSuite plugin for BBRF☆24Updated 2 years ago
- Accompanying material needed for the workshop☆11Updated last year
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Updated 3 years ago
- ☆12Updated 3 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- Pythonize Intruder Payload☆13Updated 3 years ago
- SonicWall VPN-SSL Exploit* using Golang ( * and other targets vulnerable to shellshock ).☆18Updated 3 years ago
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆22Updated 3 years ago
- Fast dns resolver☆12Updated 6 months ago
- Magento Security Scanner☆15Updated 2 years ago
- take a list of resolved subdomains and output any corresponding CNAMES en masse.☆14Updated last year
- Burp extension for quickly copying request/response data.☆26Updated last month
- Take a list of URIs and print all the of the paths☆10Updated 4 years ago
- Validate proxies for specific domain☆34Updated 3 years ago
- Extract parameters/paths from urls☆17Updated 4 years ago
- Files and Folders list used in file enumeration during Bug Bounty☆12Updated 4 years ago
- Jast (Just Another Screenshot Tool)☆9Updated 5 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- Simple tools to handle string and generate subdomain permutations☆14Updated 2 years ago
- A basic proxylogon scanner☆27Updated 3 years ago
- ☆12Updated 3 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 4 years ago
- ☆20Updated 4 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆17Updated 5 years ago