skepticfx / hookish

Related projects: ⓘ

• aemkei / katakana.js
  Write JavaScript alert(1) with Katakana characters only
  ☆141Updated 7 years ago
• skepticfx / domstorm
  A dashboard for interesting DOM tricks/techniques.
  ☆36Updated 3 years ago
• koto / mosquito
  XSS exploitation tool - access victims through HTTP proxy
  ☆158Updated 10 years ago
• m1el / esdeobfuscate
  PoC JavaScriopt AST deobfuscator based on partial evaluation.
  ☆44Updated 9 years ago
• danigargu / urlfuzz
  Another web fuzzer written in NodeJS
  ☆59Updated 6 years ago
• andresriancho / race-condition-exploit
  Tool to help with the exploitation of web application race conditions
  ☆178Updated 6 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆86Updated 7 years ago
• mandatoryprogrammer / FlashHTTPRequest
  A very simple bridge for performing Flash HTTP requests with JavaScript
  ☆76Updated 9 years ago
• skepticfx / wshook
  Easily intercept and modify WebSocket requests and message events.
  ☆243Updated 3 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 5 years ago
• irsdl / BurpSuiteJSBeautifier
  Burp Suite JS Beautifier
  ☆95Updated 10 years ago
• x41sec / browser-security-whitepaper-2017
  X41 Browser Security White Paper - Tools and PoCs
  ☆184Updated 6 years ago
• ajinabraham / Static-DOM-XSS-Scanner
  Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …
  ☆117Updated 9 years ago
• cure53 / Flashbang
  Project "Flashbang" - An open-source Flash-security helper
  ☆206Updated 9 years ago
• neraliu / tainted-phantomjs
  Tainted PhantomJS
  ☆53Updated 9 years ago
• roglew / guppy-proxy
  The Guppy Proxy (GUI Pappy)
  ☆142Updated 5 years ago
• 0xcite / fingerping
  A security tool to fingerprint PNG libraries used by web applications
  ☆80Updated 5 years ago
• koczkatamas / gctf19
  ☆29Updated 5 years ago
• wisec / DOMinator
  ☆78Updated 11 years ago
• Bo0oM / CVE-2017-5124
  Chrome < 62 uxss exploit (CVE-2017-5124)
  ☆161Updated 6 years ago
• geeksonsecurity / illuminatejs
  IlluminateJS is a static JavaScript deobfuscator
  ☆152Updated last year
• MozillaSecurity / octo
  A fuzzing library in JavaScript. ✨
  ☆116Updated 7 months ago
• sensepost / wadi
  Wadi Fuzzing Harness
  ☆126Updated 7 years ago
• fakhrizulkifli / Defeating-PHP-GD-imagecreatefromgif
  Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromgif()
  ☆120Updated 9 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆156Updated 5 years ago
• LinkedInAttic / jaqen
  Jaqen - Simple DNS rebinding
  ☆70Updated 6 years ago
• nccgroup / wssip
  Application for capturing, modifying and sending custom WebSocket data from client to server and vice versa.
  ☆445Updated last year
• wick2o / gitDigger
  ☆178Updated 10 years ago
• rafaybaloch / SOP-Bypass-Mini-Test-Suite
  This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…
  ☆31Updated 5 years ago
• mikispag / rosettaflash
  A tool for manipulating SWF files, leveraging zlib to craft alphanumeric-only valid SWF files in order to allow CSRF with SOP bypass than…
  ☆110Updated 5 months ago