securitum/research

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/securitum/research)

securitum / research

research

☆152

Alternatives and similar repositories for research

Users that are interested in research are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

BlackFan / client-side-prototype-pollution
View on GitHub
Prototype Pollution and useful Script Gadgets
☆1,606Jan 27, 2024Updated 2 years ago
msrkp / PPScan
View on GitHub
Client Side Prototype Pollution Scanner
☆525Sep 17, 2022Updated 3 years ago
filedescriptor / untrusted-types
View on GitHub
☆696Jul 4, 2022Updated 3 years ago
BlackFan / cspp-tools
View on GitHub
Client-Side Prototype Pollution Tools
☆88Sep 21, 2021Updated 4 years ago
xsleaks / wiki
View on GitHub
XS-Leaks Wiki
☆178Mar 13, 2026Updated 3 weeks ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
smiegles / extract-relative-url-heapsnapshot
View on GitHub
Extract relative urls from a heap snapshot
☆87May 30, 2021Updated 4 years ago
TheGrandPew / Sanity
View on GitHub
☆17Jul 31, 2021Updated 4 years ago
xsleaks / xsleaks
View on GitHub
A collection of browser-based side channel attack vectors.
☆759Mar 19, 2024Updated 2 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆612Mar 4, 2021Updated 5 years ago
Kirill89 / prototype-pollution-exploits
View on GitHub
Prototype Pollution exploits collection
☆37Aug 8, 2021Updated 4 years ago
Metnew / uxss-db
View on GitHub
🔪Browser logic vulnerabilities
☆700Jan 23, 2021Updated 5 years ago
0ang3el / websocket-smuggle
View on GitHub
Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
☆392Aug 15, 2024Updated last year
terjanq / JS-Alpha
View on GitHub
Funny project to create an encoder/obfuscator that converts any javascript code into a code that only consist of /[a-z().]/ characters
☆82Oct 11, 2019Updated 6 years ago
hahwul / websocket-connection-smuggler
View on GitHub
websocket-connection-smuggler
☆66Jan 22, 2020Updated 6 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
parrot409 / Parmy
View on GitHub
A extension for collecting parameters
☆25Oct 25, 2020Updated 5 years ago
artsploit / rogue-jndi
View on GitHub
A malicious LDAP server for JNDI injection attacks
☆76Nov 15, 2024Updated last year
yeswehack / xsstools
View on GitHub
xss development frameworks, with the goal of making payload writing easier.
☆156Aug 7, 2024Updated last year
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆581Jan 28, 2020Updated 6 years ago
hahwul / XSS-Payload-without-Anything
View on GitHub
XSS Payload without Anything.
☆104Jun 28, 2019Updated 6 years ago
jmdx / TLS-poison
View on GitHub
☆705Nov 27, 2024Updated last year
TyrantSec / Fuzzing
View on GitHub
Fuzzing Payloads to Assist in Web Application Testing.
☆166Jun 6, 2019Updated 6 years ago
HoLyVieR / prototype-pollution-nsec18
View on GitHub
Content released at NorthSec 2018 for my talk on prototype pollution
☆537May 25, 2024Updated last year
GoSecure / dtd-finder
View on GitHub
List DTDs and generate XXE payloads using those local DTDs.
☆655Feb 21, 2024Updated 2 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
hahwul / can-i-protect-xss
View on GitHub
Everything about xss protection technology
☆14Oct 22, 2019Updated 6 years ago
fransr / postMessage-tracker
View on GitHub
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
☆1,304Jan 26, 2024Updated 2 years ago
GrrrDog / weird_proxies
View on GitHub
Reverse proxies cheatsheet
☆1,857Nov 4, 2023Updated 2 years ago
jespinhara / j-is-the-boss
View on GitHub
☆23Apr 21, 2022Updated 3 years ago
Regala / burp-scope-monitor
View on GitHub
Burp Suite Extension to monitor new scope
☆200Mar 31, 2021Updated 5 years ago
pwntester / DupeKeyInjector
View on GitHub
DupeKeyInjector
☆134Apr 16, 2022Updated 3 years ago
nccgroup / Decoder-Improved
View on GitHub
Improved decoder for Burp Suite
☆138Aug 30, 2021Updated 4 years ago
BlackFan / WEB-INF-dict
View on GitHub
List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.
☆84Mar 23, 2018Updated 8 years ago
lc / secretz
View on GitHub
secretz, minimizing the large attack surface of Travis CI
☆325May 30, 2022Updated 3 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
riramar / h2rs
View on GitHub
Detects request smuggling via HTTP/2 downgrades.
☆94Jul 30, 2022Updated 3 years ago
maxpl0it / HTTPFuzz
View on GitHub
A fast generative fuzzer for HTTP
☆16Nov 29, 2018Updated 7 years ago
Cisco-AMP / java_security
View on GitHub
☆14Apr 23, 2019Updated 6 years ago
Phoenix1112 / DnsR
View on GitHub
☆12Sep 23, 2023Updated 2 years ago
mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
View on GitHub
☆71Nov 8, 2021Updated 4 years ago
daeken / httprebind
View on GitHub
Automatic tool for DNS rebinding-based SSRF attacks
☆305Aug 21, 2020Updated 5 years ago
orangetw / awesome-jenkins-rce-2019
View on GitHub
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
☆608May 17, 2019Updated 6 years ago