stypr / vulnerable-nodejs-express-mysql
Example of a vulnerable NodeJS+Express+MySQL service
☆20Updated last year
Related projects ⓘ
Alternatives and complementary repositories for vulnerable-nodejs-express-mysql
- Prototype Pollution exploits collection☆30Updated 3 years ago
- List of Trusted Types bypasses☆86Updated 7 months ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆30Updated last year
- This repo contains solution for ctf challenges☆31Updated 10 months ago
- Searcher for cross-site leaks (XS-Leaks)☆81Updated last year
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆26Updated 3 years ago
- ☆46Updated 3 years ago
- ☆55Updated 3 years ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆35Updated 2 years ago
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆43Updated last week
- Same Origin XSS challenge☆56Updated 2 years ago
- ☆56Updated 8 months ago
- ☆15Updated 3 years ago
- HTTP request smuggling tools☆17Updated 4 years ago
- Chrome extension to detect possible xsleaks☆12Updated 5 years ago
- ☆25Updated 3 months ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆33Updated 2 years ago
- ☆30Updated 5 months ago
- ✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com☆21Updated last year
- This repository is an interactive collection of my solutions to various XSS challenges.☆11Updated 4 years ago
- A extension for collecting parameters☆25Updated 4 years ago
- CVE PoCs☆21Updated 4 years ago
- This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.☆37Updated 2 years ago
- Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly☆46Updated last year
- WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…☆51Updated 2 months ago
- Dependency Confusion Security Testing Tool☆39Updated 2 years ago
- Query various sources for CVE proof-of-concepts☆49Updated last year
- ☆15Updated 4 years ago
- ☆23Updated last year