neploxaudit / extensionsLinks
π Knowledge Base on the Security of Chromium Extensions (https://extensions.neplox.security)
β19Updated last year
Alternatives and similar repositories for extensions
Users that are interested in extensions are comparing it to the libraries listed below
Sorting:
- ai-based domain name generationβ101Updated last year
- Unicode characters that will translate a single character to multiple characters in domain names or TLD'sβ50Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techsβ75Updated 7 months ago
- π οΈ Workflows created by the communityβ87Updated 2 months ago
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains aβ¦β67Updated last month
- β64Updated 2 years ago
- Curated list of Meta (formerly Facebook) owned IT assetsβ56Updated 6 months ago
- Finds graphql queries in javascript filesβ68Updated last year
- Extract GraphQL operations from javascriptβ23Updated 2 months ago
- Fast exfiltration of text using only CSS and Ligaturesβ89Updated 5 months ago
- Awesome MXSS ??β56Updated last year
- Tool to parse subdomains from dmarc.liveβ149Updated last year
- Adobe Experience Manager (AEM) hacking toolkitβ103Updated 4 months ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the dropletβ57Updated last year
- Gotta go fastβ155Updated 2 months ago
- A set of open-source community scriptsβ65Updated last year
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)β54Updated 11 months ago
- A Firefox Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-iconβ28Updated last year
- SALSA πβ‘ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.β26Updated last year
- Chrome extension for automating CSPT discoveryβ132Updated last month
- β42Updated 3 months ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response maβ¦β81Updated 2 years ago
- A simple utility to perform reverse WHOIS lookups using whoisxml APIβ40Updated 3 years ago
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.β225Updated 6 months ago
- Useful configurations for the DomLogger++ extensionβ47Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.β158Updated last year
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.β42Updated 2 years ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).β151Updated 10 months ago
- πΈοΈ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. πΈοΈβ227Updated 2 years ago
- PoC for leaking text nodes via CSS injectionβ25Updated last year