Alternatives and similar repositories for domstorm

Users that are interested in domstorm are comparing it to the libraries listed below

• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 10 years ago
• wkcaj / safecurl
  SSRF Protection Library for PHP - http://safecurl.fin1te.net
  ☆73Updated last year
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 8 years ago
• ajinabraham / Static-DOM-XSS-Scanner
  Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …
  ☆118Updated 10 years ago
• neraliu / tainted-phantomjs
  Tainted PhantomJS
  ☆52Updated 10 years ago
• avicoder / Hackerone
  Hackerone disclosed report URL Aggregator
  ☆30Updated 6 years ago
• evilpacket / xss.io
  ☆73Updated 12 years ago
• cure53 / PastePurify
  This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks
  ☆19Updated 10 years ago
• immunio / immunio-xss-fuzzer
  Immunio's XSS Fuzzer tool
  ☆25Updated 9 years ago
• fakhrizulkifli / Defeating-PHP-GD-imagecreatefromgif
  Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromgif()
  ☆121Updated 10 years ago
• wisec / DOMinator
  ☆79Updated 12 years ago
• Bo0oM / CVE-2017-7089
  Webkit uxss exploit (CVE-2017-7089)
  ☆64Updated 7 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• smiegles / crossdomain
  Exploit insecure crossdomain.xml files.
  ☆26Updated 8 years ago
• cure53 / jPurify
  jPurify
  ☆64Updated 8 years ago
• rafaybaloch / SOP-Bypass-Mini-Test-Suite
  This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…
  ☆30Updated 6 years ago
• silentsignal / duncan
  Duncan - Blind SQL injector skeleton
  ☆56Updated 3 years ago
• Nhoya / PastebinMarkdownXSS
  XSS in pastebin.com and reddit.com via unsanitized markdown output
  ☆87Updated 7 years ago
• dxa4481 / CORS
  JSON API's Are Automatically Protected Against CSRF, And Google Almost Took It Away.
  ☆34Updated 8 years ago
• irsdl / BurpSuiteJSBeautifier
  Burp Suite JS Beautifier
  ☆100Updated 11 years ago
• infosec-au / websec-weekly
  The databases, API's and managers behind https://websecweekly.org
  ☆50Updated 10 years ago
• pauljt / scanjs
  Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.
  ☆54Updated 11 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• mandatoryprogrammer / FlashHTTPRequest
  A very simple bridge for performing Flash HTTP requests with JavaScript
  ☆80Updated 9 years ago
• incredibleindishell / sqlite-lab
  This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…
  ☆161Updated 3 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆71Updated 7 years ago
• stamparm / DSFS
  Damn Small FI Scanner
  ☆60Updated 5 years ago
• jagracey / RegEx-DoS
  RegEx Denial of Service (ReDos) Scanner
  ☆164Updated 7 years ago
• yolosec / deserialize-server
  Demo server for testing Java deserialization payloads
  ☆15Updated 8 years ago