msrkp / MXSS
Awesome MXSS ??
☆48Updated 5 months ago
Alternatives and similar repositories for MXSS:
Users that are interested in MXSS are comparing it to the libraries listed below
- A collection of Server-Side Prototype Pollution gadgets and exploits☆174Updated last month
- ☆74Updated 5 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆84Updated 2 months ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆45Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆61Updated last week
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆48Updated 3 months ago
- Challenges I wrote for various CTF competitions☆40Updated 7 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆132Updated 8 months ago
- Same Origin XSS challenge☆56Updated 2 years ago
- ☆60Updated 2 years ago
- Useful configurations for the DomLogger++ extension☆34Updated 6 months ago
- Here i will post my writeups :)☆31Updated 2 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆77Updated 4 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated 11 months ago
- Security Advisories☆32Updated last year
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆106Updated 2 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆151Updated 7 months ago
- Some tips for Bug Bounty using LibreOffice☆46Updated last week
- a repository of all the CTF challenges I've made for public events☆53Updated last year
- ☆32Updated 8 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆47Updated 8 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆70Updated last month
- ✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com☆21Updated 2 years ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆39Updated this week
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆48Updated 2 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆57Updated 9 months ago
- ☆36Updated last month
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆133Updated 3 months ago