Alternatives and similar repositories for CSP-Bypass

Users that are interested in CSP-Bypass are comparing it to the libraries listed below

• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• infosec-au / bugbountydash
  [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd
  ☆192Updated 9 years ago
• andresriancho / race-condition-exploit
  Tool to help with the exploitation of web application race conditions
  ☆182Updated 6 years ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆129Updated 8 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 8 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆256Updated last month
• glennzw / shodan-hq-nse
  Shodan HQ nmap plugin - passively scan targets
  ☆155Updated 9 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆127Updated last year
• nccgroup / Decoder-Improved
  Improved decoder for Burp Suite
  ☆137Updated 3 years ago
• mandatoryprogrammer / xssless
  An automated XSS payload generator written in python.
  ☆315Updated 9 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 5 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆139Updated 4 years ago
• Plazmaz / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆117Updated 6 years ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 6 years ago
• P3GLEG / PwnBack
  Burp Extender plugin that generates a sitemap of a website using Wayback Machine
  ☆227Updated 7 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆95Updated 6 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 9 years ago
• johndekroon / serializekiller
  Mass scanner for the Java serialize bug
  ☆151Updated this week
• sbehrens / sleepy-puppy
  Deprecated please use https://github.com/Netflix/sleepy-puppy
  ☆95Updated 6 years ago
• SpiderLabs / CryptOMG
  CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
  ☆193Updated 9 years ago
• localh0t / wildpwn
  unix wildcard attacks
  ☆133Updated 7 years ago
• mubix / cfdb
  Common Findings Database
  ☆100Updated 5 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 10 years ago
• SecarmaLabs / psychoPATH
  psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
  ☆141Updated 8 years ago
• dxa4481 / XSSJacking
  Abusing Self-XSS and Clickjacking to trigger XSS
  ☆135Updated 8 years ago
• AonCyberLabs / xxe-recursive-download
  ☆231Updated 9 years ago
• infosec-au / enumXFF
  Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
  ☆221Updated 3 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆127Updated 8 years ago
• maK- / scantastic-tool
  It's bloody scantastic
  ☆237Updated 3 years ago
• Danladi / HttpPwnly
  "Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protecti…
  ☆135Updated 7 years ago