wisec / domxsswiki
Automatically exported from code.google.com/p/domxsswiki
☆518Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for domxsswiki
- ☆788Updated last year
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆443Updated 5 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆639Updated 5 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆518Updated last year
- Finds unknown classes of injection vulnerabilities☆637Updated last year
- Open Redirect Payloads☆583Updated last month
- Content discovery wordlists generated using BigQuery☆558Updated 4 years ago
- ☆655Updated 2 years ago
- Repository for hosting my research papers☆503Updated 7 months ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆308Updated last year
- A small tool that extracts relative URLs from a file.☆729Updated 4 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,225Updated 3 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆524Updated 6 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆804Updated 2 years ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆405Updated this week
- List DTDs and generate XXE payloads using those local DTDs.☆611Updated 9 months ago
- A Powerful Subdomain Takeover Tool☆931Updated last year
- ☆532Updated 9 months ago
- Client Side Prototype Pollution Scanner☆511Updated 2 years ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆1,059Updated 9 months ago
- A collection of templates for bug bounty reporting☆379Updated 3 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆634Updated 5 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆532Updated 2 years ago
- ☆354Updated 2 years ago
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆374Updated last year
- HTTP file upload scanner for Burp Proxy☆397Updated last year
- A simple SSRF-testing sheriff written in Go☆316Updated 2 weeks ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆442Updated 4 years ago
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.☆1,107Updated 3 weeks ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆731Updated 2 years ago