A dashboard for interesting DOM tricks/techniques.
☆35Dec 9, 2020Updated 5 years ago
Alternatives and similar repositories for domstorm
Users that are interested in domstorm are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35May 19, 2019Updated 6 years ago
- Hooks in to interesting functions and helps reverse the web app faster.☆172Jan 30, 2025Updated last year
- Reflective/DOM XSS scanner built on casperJS☆81Oct 21, 2014Updated 11 years ago
- A node utility to scan a domain with various techniques.☆12Sep 10, 2020Updated 5 years ago
- Advanced virtual host bruteforcer☆31Nov 23, 2015Updated 10 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Another plugin for CRLF vulnerability detection☆25Jan 25, 2017Updated 9 years ago
- Misc PoCs for various research topics☆21Sep 28, 2022Updated 3 years ago
- A collection of published exploits and proof-of-concept code.☆20Dec 19, 2017Updated 8 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆16Aug 26, 2013Updated 12 years ago
- Test for leaking DNS queries (i.e. if you're on a VPN)☆21May 19, 2014Updated 11 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆323Oct 20, 2021Updated 4 years ago
- A POC for the Java agent of Elastic APM☆12Mar 1, 2018Updated 8 years ago
- A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.☆42Jul 1, 2017Updated 8 years ago
- spring mvc cve-2014-3625☆32Mar 11, 2016Updated 10 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Basic raw packet sniffer in Python - Cybrary☆12Nov 21, 2017Updated 8 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆141Feb 18, 2021Updated 5 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆259Aug 22, 2021Updated 4 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Jun 22, 2024Updated last year
- Rust `Vec` that can store unsized values☆22Sep 13, 2025Updated 7 months ago
- ☆18Nov 14, 2018Updated 7 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Mar 24, 2017Updated 9 years ago
- RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler☆20Dec 24, 2013Updated 12 years ago
- 一个简单的NIDS系统☆15May 17, 2017Updated 8 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Burp Suite extension for JAX-RS☆64Mar 17, 2017Updated 9 years ago
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆55Mar 27, 2017Updated 9 years ago
- Automatically exported from code.google.com/p/mustache-security☆23Mar 16, 2015Updated 11 years ago
- Tools for analysing the forward DNS data set published at https://scans.io/study/sonar.fdns_v2☆17Sep 17, 2017Updated 8 years ago
- Terraform module for creating AWS CodeBuild Projects☆13Jul 1, 2021Updated 4 years ago
- ☆29Sep 25, 2020Updated 5 years ago
- Viewstate Hidden Control Enumerator☆17Sep 12, 2013Updated 12 years ago
- An example of high-QPS requesting Burp Intruder style on AWS Lambda via self-invocation.☆21Nov 15, 2018Updated 7 years ago
- Web hacking assistance toolkit☆113Sep 19, 2017Updated 8 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- a tiny tool for swf hacking, just browse it:)☆243Mar 13, 2013Updated 13 years ago
- Declarative syntax for defining sets of URLs. No need for error-prone regexs.☆21Apr 24, 2019Updated 7 years ago
- Docker Image for Adobe Enterprise Manager☆12Jul 9, 2018Updated 7 years ago
- Using Machine Learning to detect irrelevant and inappropriate text, entirely in the browser.☆15Sep 27, 2022Updated 3 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Dec 12, 2018Updated 7 years ago
- ☆13Oct 14, 2016Updated 9 years ago
- ☆25Apr 24, 2026Updated last week