rafaybaloch / SOP-Bypass-Mini-Test-Suite
This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing Same Origin Policy bypass issues with browsers. Due credits were given to the researchers whose Proof of concepts have been incorporated in this test suite. Please note that, this is just the beta version, the n…
☆30Updated 5 years ago
Alternatives and similar repositories for SOP-Bypass-Mini-Test-Suite:
Users that are interested in SOP-Bypass-Mini-Test-Suite are comparing it to the libraries listed below
- XXE OOB Exploitation Toolset for Automation☆63Updated 11 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- ☆32Updated 9 years ago
- ☆70Updated 7 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆51Updated 4 years ago
- CSV injection Vulnerable Script.☆29Updated 7 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 8 years ago
- Extension adds a new tab in Burp Suite called Extractor☆43Updated 5 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Updated 8 years ago
- Files from Zeronights presentation.☆28Updated 12 years ago
- OAuth plugin for Burp Suite Extender☆42Updated 6 years ago
- Updated version of SWFIntruder☆26Updated 8 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 7 years ago
- Exploit insecure crossdomain.xml files.☆26Updated 7 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.☆25Updated 9 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆44Updated 11 years ago
- Break Apps with Frida workshop material☆42Updated 7 years ago
- Simple trick to increase readability of exceptions raised by Burp extensions written in Python☆43Updated 8 years ago
- A websocket proxy☆13Updated 7 years ago
- Scripts and auxiliary files for fuzzing PHP's unserialize function☆43Updated 7 years ago
- Radamsa fuzzer extension for Burp Suite☆23Updated 11 years ago
- The Zulu fuzzer☆125Updated 7 years ago
- Demo server for testing Java deserialization payloads☆15Updated 8 years ago
- put this here because archival reasons.☆28Updated 7 years ago
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆45Updated 6 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆23Updated 6 years ago