terjanq / same-origin-xssLinks
Same Origin XSS challenge
☆64Updated 3 years ago
Alternatives and similar repositories for same-origin-xss
Users that are interested in same-origin-xss are comparing it to the libraries listed below
Sorting:
- Client-Side Prototype Pollution Tools☆85Updated 4 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- tetctf2020_amf_writeups☆23Updated 4 years ago
- Chrome extension that finds DOM based XSS vulnerabilities☆72Updated 4 months ago
- ☆56Updated 4 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆111Updated last year
- This repo contains solution for ctf challenges☆36Updated 10 months ago
- ☆169Updated 4 years ago
- Nuclei Templates to reproduce Cracking the lens's Research☆127Updated 3 years ago
- Prototype Pollution exploits collection☆34Updated 4 years ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆52Updated this week
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Utility for creating ZipSlip archives☆78Updated 2 years ago
- ☆23Updated 6 months ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆104Updated 3 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- Authenticated SSRF in Grafana☆82Updated last year
- Detects request smuggling via HTTP/2 downgrades.☆94Updated 3 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆88Updated 3 years ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆104Updated 10 months ago
- A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻☆127Updated 3 years ago
- Awesome MXSS ??☆53Updated last year
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆175Updated 11 months ago
- Burpsuite plugin for Interact.sh☆227Updated last year
- This repo contains all the injections mentioned in my talk and enumerators.☆130Updated last year
- ☆89Updated last year
- Modified Nuclei Templates Version to FUZZ Host Header☆50Updated 3 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆62Updated 4 months ago