molnarg / tabnabbing-demo

Related projects ⓘ

Alternatives and complementary repositories for tabnabbing-demo

• XMPPwocky / nodebeefcl
  Recovers V8 Math.random seed from outputs, even when they are not consecutive.
  ☆31Updated 8 years ago
• stealth / QI
  Quantum Insert/FoxAcid case study
  ☆15Updated 7 years ago
• cweb / unicode-hax
  A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.
  ☆42Updated 7 years ago
• hannob / ctgrab
  ☆25Updated 7 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆77Updated 8 years ago
• mandatoryprogrammer / wmap
  a mass web screenshot tool for mapping web networks.
  ☆24Updated 9 years ago
• 0x3a / playing-games-with-an-attacker
  Resources for: "Playing games with an attacker: how I messed with someone trying to breach the CryptoWall tracker"
  ☆24Updated 8 years ago
• praetorian-inc / hashcatJS
  An implementation of the hashcat rules engine in javascript
  ☆47Updated 6 years ago
• asanso / jwe-sender
  ☆11Updated 7 years ago
• cure53 / PastePurify
  This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks
  ☆19Updated 9 years ago
• avicoder / Exif-XSS
  PHP Demo for xss using Exif metadeta.
  ☆9Updated 9 years ago
• jkingsman / Breakbot
  Quickly add disruptive unicode, dangerous strings, and more to your clipboard.
  ☆25Updated 8 years ago
• mothran / apkminer
  Parallel APK analyzer
  ☆51Updated 7 years ago
• nbshelton / bitdump
  A tool to extract database data from a blind SQL injection vulnerability.
  ☆31Updated 8 years ago
• SafeBreach-Labs / cachetalk
  Proof-of-concept program that is able to read and write arbitrary bits using HTTP server-side caching
  ☆34Updated 7 years ago
• dxa4481 / CORS
  JSON API's Are Automatically Protected Against CSRF, And Google Almost Took It Away.
  ☆35Updated 7 years ago
• badonions / BADONIONS
  Detect passive activity in the Tor-network
  ☆13Updated 9 years ago
• jbertman / pattern_tools
  Metasploit pattern generator in Python, modified to be used as a function
  ☆24Updated 9 years ago
• jcarlosn / gzip-http-time
  PoC for getting remote HTTP Server date using gzip compressed HTTP Response
  ☆56Updated 8 years ago
• dmayer / time_trial
  Time Trial - A tool for performing feasibility analyses of timing attacks
  ☆83Updated 10 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆112Updated 7 years ago
• h1kari / chapcrack
  ☆15Updated 8 years ago
• skepticfx / domstorm
  A dashboard for interesting DOM tricks/techniques.
  ☆36Updated 3 years ago
• infobyte / faraday_bugbounty
  Faraday Workspaces for Bug Bounties
  ☆20Updated 8 years ago
• rafael-santiago / mr-hyde
  A collection of steganography tools.
  ☆15Updated 4 years ago
• mandatoryprogrammer / xpire-crossdomain-scanner
  Scans crossdomain.xml policies for expired domain names.
  ☆25Updated 9 years ago
• 0xcite / fingerping
  A security tool to fingerprint PNG libraries used by web applications
  ☆80Updated 5 years ago
• realalexandergeorgiev / tempracer
  A Windows priviledge escalation tool (abusing race conditions)
  ☆79Updated 9 years ago
• YelSecurity / Yel-CSRF-tool
  This is Chrome extension for detecting CSRF vulnerabilities.
  ☆10Updated 7 years ago
• mandatoryprogrammer / UPBRUTE
  Dynamic DNS Update Bruteforce Tool
  ☆29Updated 7 years ago