xiaofen9 / Lynx
A Node.js vulnerability finding tool.
☆95Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for Lynx
- research☆150Updated 7 months ago
- A curated list of awesome browser security learning material.☆130Updated 2 years ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆243Updated 3 weeks ago
- ☆175Updated 2 weeks ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆197Updated last year
- HTML5 WebSocket message fuzzer☆144Updated 5 years ago
- A tool to perform Sequential Import Chaining☆254Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆253Updated 3 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆344Updated 2 years ago
- ☆128Updated 3 years ago
- ☆107Updated 2 years ago
- Simple "postMessage logger" Chrome extension☆92Updated 4 years ago
- Burp Suite Extension to monitor new scope☆195Updated 3 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆49Updated 6 years ago
- Cure53 Browser Security White Paper☆286Updated 6 years ago
- ☆51Updated 5 months ago
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆208Updated last month
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆70Updated 2 years ago
- Automatic tool for DNS rebinding-based SSRF attacks☆293Updated 4 years ago
- JWT fuzzer☆104Updated 6 years ago
- A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web☆69Updated 4 years ago
- A simple SSRF-testing sheriff written in Go☆316Updated 2 weeks ago
- When MVC magic turns black☆286Updated 4 years ago
- DupeKeyInjector☆134Updated 2 years ago
- List of Trusted Types bypasses☆86Updated 7 months ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆280Updated 4 months ago
- PoC for leaking text nodes via CSS injection☆35Updated 6 years ago
- SHELLING - a comprehensive OS command injection payload generator☆107Updated 5 years ago
- Predict Mongo ObjectIds☆125Updated 6 years ago