neploxaudit / extensions
π Knowledge Base on the Security of Chromium Extensions (https://extensions.neplox.security)
β12Updated 2 months ago
Alternatives and similar repositories for extensions:
Users that are interested in extensions are comparing it to the libraries listed below
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messagesβ36Updated last year
- β15Updated 3 years ago
- Simple PoC for demonstrating Race Conditions on Websocketsβ56Updated last year
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.β28Updated 3 years ago
- Jumpstart multiple WebSocket servers quicklyβ31Updated 3 years ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration testβ¦β32Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!β20Updated 7 months ago
- A collection of utilities for building extensions using Burp's Montoya APIβ47Updated 9 months ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.β23Updated 10 months ago
- This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attacβ¦β28Updated last year
- Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulnerβ¦β15Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suiteβ30Updated 3 weeks ago
- β30Updated 11 months ago
- An automated web reconnaissance tool that delivers your essential tools directly through Discord for effortless access.β12Updated 4 months ago
- Prototype Pollution exploits collectionβ32Updated 3 years ago
- convert secret patterns to gf compatible.β39Updated 2 years ago
- A cheatsheet for exploiting server-side SVG rasterization.β30Updated 2 years ago
- A tool to migrate Burpsuite HTTP history to Caido.β27Updated 10 months ago
- Dependency Confusion Security Testing Toolβ47Updated 2 years ago
- jxscout superpowers JavaScript analysis for security researchersβ19Updated this week
- Reconness Agents Scriptβ32Updated 2 years ago
- β¨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.comβ21Updated 2 years ago
- Advanced test for proxy & wafβ13Updated 6 months ago
- Fast and passive subdomain enumeration.β17Updated 2 years ago
- LogSnare: A playground for testing, preventing, and logging IDOR vulnerabilities.β31Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.β70Updated 3 years ago
- Easy discovery of assetsβ13Updated 2 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termiβ¦β24Updated 2 years ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techsβ63Updated 3 weeks ago
- Slides and other material from various conference presentations.β40Updated last month