swoops / eval_villain
A Firefox Web Extension to improve the discovery of DOM XSS.
☆270Updated 4 months ago
Alternatives and similar repositories for eval_villain:
Users that are interested in eval_villain are comparing it to the libraries listed below
- Burp extension to create target specific and tailored wordlist from burp history.☆237Updated 3 years ago
- Burpsuite plugin for Interact.sh☆215Updated 8 months ago
- Prototype pollution scanner using headless chrome☆216Updated 2 years ago
- IIS shortname scanner written in Go☆323Updated last year
- Burp Extension for easily creating Wordlists☆211Updated 3 years ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆243Updated 7 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆306Updated 3 months ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆351Updated 4 years ago
- ☆151Updated last year
- Secret and/or credential patterns used for gf.☆240Updated 2 years ago
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…☆229Updated 3 years ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆265Updated 3 months ago
- Unofficial documentation for the great tool Param Miner☆178Updated 2 years ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆247Updated last week
- ☆286Updated 2 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆494Updated this week
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆140Updated last week
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆191Updated 7 months ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆286Updated last year
- List of fresh DNS resolvers updated daily☆109Updated 2 years ago
- List of reporting templates I have used since I started doing BBH.☆282Updated 5 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆466Updated 2 years ago
- Customisable and automated HTTP header injection☆244Updated 8 months ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆207Updated 8 months ago
- De-clutter a list of URLs☆327Updated 3 months ago
- A fast and minimal JS endpoint extractor☆340Updated 4 months ago
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆79Updated last week
- Rust-based high performance domain permutation generator.☆286Updated last year
- Random utilities from my security projects that might be useful to others☆179Updated last month
- xss development frameworks, with the goal of making payload writing easier.☆138Updated 7 months ago