Alternatives and similar repositories for same-origin-xss

Users that are interested in same-origin-xss are comparing it to the libraries listed below

• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆85Updated 3 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 4 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆111Updated last year
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆127Updated 3 years ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 4 years ago
• AsaiKen / dom-based-xss-finder
  Chrome extension that finds DOM based XSS vulnerabilities
  ☆72Updated 3 months ago
• neex / ghostinthepdf
  ☆169Updated 3 years ago
• bytehope / wwe
  ☆22Updated 6 months ago
• Sudistark / CTF-Writeups
  This repo contains solution for ctf challenges
  ☆36Updated 9 months ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆76Updated 2 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆102Updated 2 months ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆82Updated last year
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆48Updated 6 years ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆52Updated 4 months ago
• msrkp / MXSS
  Awesome MXSS ??
  ☆53Updated 11 months ago
• synfron / ReshaperForBurp
  Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules
  ☆104Updated 10 months ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆65Updated last year
• Kirill89 / prototype-pollution-exploits
  Prototype Pollution exploits collection
  ☆34Updated 4 years ago
• wdahlenburg / pyhprof
  Parse HPROF files from the Spring Boot Heapdump Actuator
  ☆28Updated last year
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆50Updated 3 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆62Updated 3 months ago
• DrunkenShells / Disclosures
  Public Disclosures
  ☆91Updated 3 years ago
• chenjj / Awesome-HTTPRequestSmuggling
  A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
  ☆127Updated 3 years ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆94Updated 3 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆128Updated 2 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆123Updated 2 years ago
• GoSecure / request-smuggling-workshop
  ☆27Updated 2 years ago
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆51Updated last year