swoops / eval_villainLinks
A Firefox Web Extension to improve the discovery of DOM XSS.
☆276Updated 9 months ago
Alternatives and similar repositories for eval_villain
Users that are interested in eval_villain are comparing it to the libraries listed below
Sorting:
- Burp extension to create target specific and tailored wordlist from burp history.☆245Updated 3 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆317Updated last month
- Prototype pollution scanner using headless chrome☆220Updated 3 years ago
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…☆232Updated 3 years ago
- Unofficial documentation for the great tool Param Miner☆182Updated 3 years ago
- IIS shortname scanner written in Go☆340Updated 2 years ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆251Updated last year
- ☆156Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆195Updated last year
- Useful "Match and Replace" burpsuite rules☆349Updated last year
- Customisable and automated HTTP header injection☆260Updated last year
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆153Updated this week
- Burpsuite plugin for Interact.sh☆227Updated last year
- xss development frameworks, with the goal of making payload writing easier.☆147Updated last year
- De-clutter a list of URLs☆346Updated 9 months ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆536Updated 5 months ago
- A tool to inspect and attack version 1 GUIDs☆233Updated 2 years ago
- ☆162Updated 2 years ago
- This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…☆337Updated 4 years ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆273Updated 2 months ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆374Updated 5 years ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆252Updated 10 months ago
- Generate tens of thousands of subdomain combinations in a matter of seconds☆271Updated last year
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆229Updated 3 years ago
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆91Updated 5 months ago
- List of reporting templates I have used since I started doing BBH.☆312Updated 11 months ago
- ☆114Updated 2 years ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆294Updated 2 years ago
- ☆152Updated 2 years ago
- Nuclei templates written by geeknik. Claude is my co-pilot. 🤖☆273Updated 2 weeks ago