securitum/research

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/securitum/research)

securitum / research

research

☆151

Alternatives and similar repositories for research

Users that are interested in research are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

BlackFan / client-side-prototype-pollution
View on GitHub
Prototype Pollution and useful Script Gadgets
☆1,612Jan 27, 2024Updated 2 years ago
msrkp / PPScan
View on GitHub
Client Side Prototype Pollution Scanner
☆524Sep 17, 2022Updated 3 years ago
filedescriptor / untrusted-types
View on GitHub
☆697Jul 4, 2022Updated 3 years ago
BlackFan / cspp-tools
View on GitHub
Client-Side Prototype Pollution Tools
☆88Sep 21, 2021Updated 4 years ago
xsleaks / wiki
View on GitHub
XS-Leaks Wiki
☆179Mar 13, 2026Updated last month
Bare Metal GPUs on DigitalOcean Gradient AI • Ad
Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
smiegles / extract-relative-url-heapsnapshot
View on GitHub
Extract relative urls from a heap snapshot
☆87May 30, 2021Updated 4 years ago
TheGrandPew / Sanity
View on GitHub
☆17Jul 31, 2021Updated 4 years ago
xsleaks / xsleaks
View on GitHub
A collection of browser-based side channel attack vectors.
☆757Mar 19, 2024Updated 2 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆614Mar 4, 2021Updated 5 years ago
Kirill89 / prototype-pollution-exploits
View on GitHub
Prototype Pollution exploits collection
☆37Aug 8, 2021Updated 4 years ago
Metnew / uxss-db
View on GitHub
🔪Browser logic vulnerabilities
☆701Jan 23, 2021Updated 5 years ago
0ang3el / websocket-smuggle
View on GitHub
Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
☆392Aug 15, 2024Updated last year
terjanq / JS-Alpha
View on GitHub
Funny project to create an encoder/obfuscator that converts any javascript code into a code that only consist of /[a-z().]/ characters
☆82Oct 11, 2019Updated 6 years ago
hahwul / websocket-connection-smuggler
View on GitHub
websocket-connection-smuggler
☆66Jan 22, 2020Updated 6 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
parrot409 / Parmy
View on GitHub
A extension for collecting parameters
☆25Oct 25, 2020Updated 5 years ago
artsploit / rogue-jndi
View on GitHub
A malicious LDAP server for JNDI injection attacks
☆76Nov 15, 2024Updated last year
yeswehack / xsstools
View on GitHub
xss development frameworks, with the goal of making payload writing easier.
☆157Aug 7, 2024Updated last year
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆581Jan 28, 2020Updated 6 years ago
hahwul / XSS-Payload-without-Anything
View on GitHub
XSS Payload without Anything.
☆105Jun 28, 2019Updated 6 years ago
jmdx / TLS-poison
View on GitHub
☆705Nov 27, 2024Updated last year
TyrantSec / Fuzzing
View on GitHub
Fuzzing Payloads to Assist in Web Application Testing.
☆166Jun 6, 2019Updated 6 years ago
HoLyVieR / prototype-pollution-nsec18
View on GitHub
Content released at NorthSec 2018 for my talk on prototype pollution
☆536May 25, 2024Updated last year
GoSecure / dtd-finder
View on GitHub
List DTDs and generate XXE payloads using those local DTDs.
☆655Feb 21, 2024Updated 2 years ago
GPUs on demand by Runpod - Special Offer Available • Ad
Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
hahwul / can-i-protect-xss
View on GitHub
Everything about xss protection technology
☆14Oct 22, 2019Updated 6 years ago
fransr / postMessage-tracker
View on GitHub
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
☆1,308Jan 26, 2024Updated 2 years ago
GrrrDog / weird_proxies
View on GitHub
Reverse proxies cheatsheet
☆1,863Nov 4, 2023Updated 2 years ago
jespinhara / j-is-the-boss
View on GitHub
☆23Apr 21, 2022Updated 4 years ago
Regala / burp-scope-monitor
View on GitHub
Burp Suite Extension to monitor new scope
☆200Mar 31, 2021Updated 5 years ago
pwntester / DupeKeyInjector
View on GitHub
DupeKeyInjector
☆134Apr 16, 2022Updated 4 years ago
nccgroup / Decoder-Improved
View on GitHub
Improved decoder for Burp Suite
☆138Aug 30, 2021Updated 4 years ago
BlackFan / WEB-INF-dict
View on GitHub
List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.
☆84Mar 23, 2018Updated 8 years ago
lc / secretz
View on GitHub
secretz, minimizing the large attack surface of Travis CI
☆325May 30, 2022Updated 3 years ago
GPUs on demand by Runpod - Special Offer Available • Ad
Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
riramar / h2rs
View on GitHub
Detects request smuggling via HTTP/2 downgrades.
☆94Jul 30, 2022Updated 3 years ago
maxpl0it / HTTPFuzz
View on GitHub
A fast generative fuzzer for HTTP
☆17Nov 29, 2018Updated 7 years ago
Cisco-AMP / java_security
View on GitHub
☆14Apr 23, 2019Updated 7 years ago
Phoenix1112 / DnsR
View on GitHub
☆12Sep 23, 2023Updated 2 years ago
mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
View on GitHub
☆71Nov 8, 2021Updated 4 years ago
rayhan0x01 / GadgetSmith
View on GitHub
CLI script to use GadgetProbe as a library to generate serialized payloads of DNS callbacks to free DNSbin to probe what Java classpaths …
☆14Jun 8, 2021Updated 4 years ago
daeken / httprebind
View on GitHub
Automatic tool for DNS rebinding-based SSRF attacks
☆305Aug 21, 2020Updated 5 years ago