HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks
☆224Apr 24, 2026Updated 2 weeks ago
Alternatives and similar repositories for h2spacex
Users that are interested in h2spacex are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆20Apr 11, 2024Updated 2 years ago
- ☆36Jun 21, 2024Updated last year
- Differential testing framework for HTTP implementations☆931Jan 21, 2026Updated 3 months ago
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆792Dec 9, 2025Updated 5 months ago
- Examples for Implementing cve-2023-44487 ( HTTP/2 Rapid Reset Attack ) Concept☆14Nov 10, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆149Dec 9, 2024Updated last year
- Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report☆14Feb 6, 2025Updated last year
- ✂️ Removing CDN IPs from the list of IP addresses☆346Jul 22, 2025Updated 9 months ago
- 🔎 Dork Generator☆29Jun 11, 2023Updated 2 years ago
- Burp Plugin to Bypass WAFs through the insertion of Junk Data☆1,472Jul 14, 2025Updated 9 months ago
- A tool to inspect and attack version 1 GUIDs☆239Oct 13, 2022Updated 3 years ago
- gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications (Official BApp Extension Available)☆252Nov 4, 2025Updated 6 months ago
- ☆19Sep 2, 2024Updated last year
- Useful configurations for the DomLogger++ extension☆48Apr 7, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,340Aug 7, 2025Updated 9 months ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆1,309Jan 26, 2024Updated 2 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆112Jun 23, 2025Updated 10 months ago
- WordTally is a Python script designed to analyze text files and provide word frequency statistics.☆15Jul 3, 2023Updated 2 years ago
- ☆95Dec 4, 2025Updated 5 months ago
- BurpSuite extension that helps find user input in a GWT body.☆12May 29, 2020Updated 5 years ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,824May 22, 2024Updated last year
- Prototype Pollution and useful Script Gadgets☆1,617Jan 27, 2024Updated 2 years ago
- TLDFinder is a Python package that identifies valid top-level domains (TLDs) for a list of domains with wildcard characters in the TLD.☆24Jul 2, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆231Jul 24, 2025Updated 9 months ago
- Proof of Concepts for unsafe deserialization in Ruby☆17Oct 17, 2024Updated last year
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,371Apr 23, 2026Updated 2 weeks ago
- Obtain GraphQL API schema even if the introspection is disabled☆1,444Dec 5, 2025Updated 5 months ago
- Writeup finder from medium or other☆22Sep 11, 2024Updated last year
- Automated learning of regexes for DNS discovery☆391Feb 18, 2023Updated 3 years ago
- Contextual Content Discovery Tool☆3,165Apr 29, 2024Updated 2 years ago
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆250Dec 9, 2025Updated 5 months ago
- A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.☆49Aug 31, 2025Updated 8 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection☆488Sep 9, 2025Updated 8 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆515Jul 17, 2022Updated 3 years ago
- Content-Type Research☆663Jun 29, 2025Updated 10 months ago
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆1,173Jan 21, 2026Updated 3 months ago
- Burp extension to generate multi-step CSRF POC.☆30Sep 23, 2019Updated 6 years ago
- ☆21Sep 12, 2025Updated 7 months ago