terjanq / same-origin-xssLinks
Same Origin XSS challenge
☆61Updated 3 years ago
Alternatives and similar repositories for same-origin-xss
Users that are interested in same-origin-xss are comparing it to the libraries listed below
Sorting:
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Client-Side Prototype Pollution Tools☆85Updated 3 years ago
- tetctf2020_amf_writeups☆23Updated 4 years ago
- ☆56Updated 3 years ago
- Chrome extension that finds DOM based XSS vulnerabilities☆72Updated 2 months ago
- Nuclei Templates to reproduce Cracking the lens's Research☆127Updated 3 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆110Updated last year
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆101Updated last month
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- ☆166Updated 3 years ago
- Authenticated SSRF in Grafana☆82Updated last year
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆51Updated 3 months ago
- This repo contains solution for ctf challenges☆36Updated 8 months ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- ☆21Updated 4 months ago
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆128Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- ☆17Updated 2 years ago
- Prototype Pollution exploits collection☆35Updated 3 years ago
- Awesome MXSS ??☆52Updated 10 months ago
- Workshop given at Hack in Paris 2019☆122Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 months ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆88Updated 3 years ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year
- Blog about HTTP Request Smuggling, including a demo application.☆29Updated 3 years ago
- ☆64Updated 3 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- Public Disclosures☆91Updated 3 years ago
- Recurrent Neural Network SubDomain Discovery Tool☆95Updated 2 years ago
- Compiled dataset of Java deserialization CVEs☆62Updated 4 years ago