nccgroup / clickjacking-poc

Related projects: ⓘ

• random-robbie / kube-scan
  Kubernetes Scanner
  ☆41Updated 2 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• pownjs / leaks
  Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.
  ☆28Updated last year
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 4 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 6 years ago
• xyele / hostinjector
  ☆53Updated this week
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆35Updated last year
• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆39Updated last year
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆45Updated 5 years ago
• M507 / AutomatedHunter
  Google Chrome Extension automates testing fundamental Web Problems via Chrome
  ☆21Updated 3 years ago
• PortSwigger / site-map-extractor
  ☆10Updated 3 years ago
• Static-Flow / BurpSuiteTeamServer
  This is the Go Server that relays all HTTP requests and responses between clients.
  ☆26Updated 11 months ago
• MarioBartolome / Jenkins-pRCE-exploit
  Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…
  ☆10Updated 5 years ago
• mohitkhemchandani / OSCE_BIBLE
  A collection of OSCE preparation resources.
  ☆23Updated 4 years ago
• random-robbie / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on list of domains.
  ☆10Updated 6 years ago
• freddyb / 0e.vc
  a shared short domain for XSS and other hacks
  ☆31Updated 2 years ago
• tautology0 / ayfabtu
  Scripts to extract files from SCM directories left on web servers
  ☆34Updated last year
• jimmy-ly00 / dirlister
  Create wordlists from source codes files/directories for enumeration
  ☆30Updated last year
• righettod / virtualhost-payload-generator
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Updated 6 years ago
• hackerscrolls / simplesmtp
  Just a simple SMTP server, implementation of @corpix smtpd library
  ☆14Updated 4 years ago
• onsecurity / evilginx2
  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …
  ☆13Updated 5 months ago
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 4 years ago
• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 5 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• cinerieus / as3nt
  Another Subdomain ENumeration Tool
  ☆10Updated last year
• ManhNho / brutality
  ☆23Updated this week
• sahadnk72 / jecretz
  Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets
  ☆41Updated last year
• cnotin / burp-scan-manual-insertion-point
  Burp Suite Pro extension
  ☆10Updated 7 years ago
• itsKindred / PortPush
  ☆24Updated this week
• gwen001 / testxss
  PHP tool to test XSS
  ☆23Updated 4 years ago