Alternatives and similar repositories for vulnerable-nodejs-express-mysql

Users that are interested in vulnerable-nodejs-express-mysql are comparing it to the libraries listed below

• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆85Updated 3 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆31Updated 2 years ago
• shoebpate1 / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 4 years ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆92Updated 3 years ago
• Kirill89 / prototype-pollution-exploits
  Prototype Pollution exploits collection
  ☆35Updated 4 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• vavkamil / wp-update-confusion
  WordPress Plugin Update Confusion
  ☆67Updated 3 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 3 years ago
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆101Updated last year
• w9w / bugbounty_changelogs
  ☆57Updated 6 months ago
• filedescriptor / Unicode-Mapping-on-Domain-names
  ☆129Updated 4 years ago
• honoki / wilson-cloud-respwnder
  WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…
  ☆50Updated 11 months ago
• TROUBLE-1 / Type-juggling
  Lab that will help you to understand how type juggling vulnerability works.
  ☆22Updated 4 years ago
• 0x221b / Wordlists
  A repository of wordlists for enumeration. Will be added to by my tools when they find interesting new entries
  ☆23Updated 4 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• BitTheByte / BitMapper
  Burp-suite Extension For finding .map files
  ☆50Updated last year
• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆75Updated last week
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 2 years ago
• michael1026 / trashcompactor
  ☆67Updated 2 years ago
• Cache-Money / chronorace
  ☆72Updated 3 years ago
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆91Updated 3 years ago
• assetnote / h2csmuggler
  ☆74Updated last year
• iustin24 / SSRF
  ☆34Updated 4 years ago
• melbadry9 / SSLEnum
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆43Updated 6 months ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated 2 years ago
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆55Updated 3 months ago
• pry0cc / nahamcon-axiom-demo-2021
  The commands and scripts I used in the Live Recon Village talks
  ☆38Updated 4 years ago
• payatu / vuln-nodejs-app
  ☆28Updated last year
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• ja1sh / grepTheCurl
  One liner regex match to search inside JS files, using curl and grep!
  ☆29Updated 3 years ago