terjanq / JS-Alpha

Related projects ⓘ

Alternatives and complementary repositories for JS-Alpha

• securitum / research
  research
  ☆150Updated 7 months ago
• filedescriptor / Unicode-Mapping-on-Domain-names
  ☆127Updated 3 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆253Updated 2 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆85Updated 6 months ago
• cgvwzq / css-scrollbar-attack
  PoC for leaking text nodes via CSS injection
  ☆35Updated 6 years ago
• terjanq / Flag-Capture
  Solutions and write-ups from security-based competitions also known as Capture The Flag competition
  ☆99Updated 4 years ago
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆92Updated 4 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆195Updated 3 years ago
• lanjelot / ctfs
  notes and code on past CTFs
  ☆100Updated 3 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆85Updated 3 years ago
• d0nutptr / sic
  A tool to perform Sequential Import Chaining
  ☆254Updated 5 years ago
• spaceraccoon / webpack-exploder
  Unpack the source code of React and other Webpacked apps!
  ☆99Updated 7 months ago
• SafeBreach-Labs / HRS
  ☆49Updated 4 years ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆125Updated 6 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆105Updated 5 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆147Updated last year
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆172Updated 4 years ago
• mpgn / ByP-SOP
  🏴‍☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴‍☠️
  ☆196Updated 5 years ago
• Xib3rR4dAr / filter-var-sqli
  Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )
  ☆31Updated 5 years ago
• mpgn / Rails-doubletap-RCE
  RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)
  ☆134Updated last year
• CoreyD97 / Stepper
  A natural evolution of Burp Suite's Repeater tool
  ☆194Updated 9 months ago
• ettic-team / EndpointFinder
  ☆51Updated 5 months ago
• freddyb / 0e.vc
  a shared short domain for XSS and other hacks
  ☆31Updated 2 years ago
• neex / 1u.ms
  ☆163Updated 3 years ago
• neex / gifoeb
  exploit for ImageMagick's uninitialized memory disclosure in gif coder
  ☆278Updated 7 years ago
• minight / h2csmuggler
  ☆27Updated 4 years ago