skepticfx / domstorm

Related projects ⓘ

Alternatives and complementary repositories for domstorm

• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 10 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• immunio / immunio-xss-fuzzer
  Immunio's XSS Fuzzer tool
  ☆25Updated 8 years ago
• wkcaj / safecurl
  SSRF Protection Library for PHP - http://safecurl.fin1te.net
  ☆73Updated last year
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆77Updated 8 years ago
• ajinabraham / Static-DOM-XSS-Scanner
  Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …
  ☆118Updated 9 years ago
• silentsignal / duncan
  Duncan - Blind SQL injector skeleton
  ☆56Updated 2 years ago
• bugbountyworld / BugBountyWorld
  ☆13Updated 2 years ago
• neraliu / tainted-phantomjs
  Tainted PhantomJS
  ☆53Updated 9 years ago
• mandatoryprogrammer / xpire-crossdomain-scanner
  Scans crossdomain.xml policies for expired domain names.
  ☆25Updated 9 years ago
• avicoder / Hackerone
  Hackerone disclosed report URL Aggregator
  ☆29Updated 6 years ago
• Techlord-RCE / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆45Updated 6 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 7 years ago
• staaldraad / wsproxy
  A websocket proxy
  ☆13Updated 7 years ago
• pauljt / scanjs
  Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.
  ☆54Updated 10 years ago
• yolosec / deserialize-server
  Demo server for testing Java deserialization payloads
  ☆15Updated 8 years ago
• Bo0oM / CVE-2017-7089
  Webkit uxss exploit (CVE-2017-7089)
  ☆64Updated 7 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 7 years ago
• nccgroup / dotnetpaddingoracle
  Python Implementation of a .NET Padding Oracle Assessment Tool
  ☆30Updated 8 years ago
• packetforger / localroot
  Collection of tools for privesc on Linux
  ☆33Updated 11 years ago
• mandatoryprogrammer / FlashHTTPRequest
  A very simple bridge for performing Flash HTTP requests with JavaScript
  ☆78Updated 9 years ago
• mubix / tools
  Operational toolset utilizing git's submodule feature
  ☆55Updated 11 years ago
• cure53 / PastePurify
  This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks
  ☆19Updated 9 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆49Updated 8 years ago
• asmyczek / popcorn
  Popcorn - the JSON fuzzer
  ☆22Updated 10 years ago
• RUB-NDS / DTD-Attacks
  Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
  ☆56Updated 8 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago