Alternatives and similar repositories for same-origin-xss

Users that are interested in same-origin-xss are comparing it to the libraries listed below

• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 3 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆86Updated 4 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 4 years ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 5 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆112Updated last year
• bytehope / wwe
  ☆25Updated 11 months ago
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆57Updated 2 years ago
• AsaiKen / dom-based-xss-finder
  Chrome extension that finds DOM based XSS vulnerabilities
  ☆75Updated 8 months ago
• Sudistark / CTF-Writeups
  This repo contains solution for ctf challenges
  ☆38Updated last year
• neex / ghostinthepdf
  ☆170Updated 4 years ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆81Updated 3 years ago
• msrkp / MXSS
  Awesome MXSS ??
  ☆56Updated last year
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆132Updated 4 years ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆57Updated 4 months ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆110Updated 7 months ago
• Kirill89 / prototype-pollution-exploits
  Prototype Pollution exploits collection
  ☆37Updated 4 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆48Updated 7 years ago
• strellic / my-ctf-challenges
  a repository of all the CTF challenges I've made for public events
  ☆58Updated 6 months ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆68Updated last year
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆60Updated last month
• defparam / haptyc
  ☆95Updated 4 years ago
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆102Updated last year
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆84Updated last year
• vavkamil / wp-update-confusion
  WordPress Plugin Update Confusion
  ☆67Updated 4 years ago
• garlic0x1 / php-analyzer
  Simple taint analyzer for PHP/WordPress using VKCOM/php-parser
  ☆18Updated 3 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆135Updated 2 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆129Updated 3 years ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆94Updated 3 years ago
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆52Updated 4 years ago