xscorp / jsmug

Related projects ⓘ

Alternatives and complementary repositories for jsmug

• msrkp / MXSS
  Awesome MXSS ??
  ☆45Updated last month
• PortSwigger / splitting-the-email-atom
  ☆65Updated last month
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆133Updated 2 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆248Updated 6 months ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆52Updated 5 months ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆59Updated 2 weeks ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆141Updated last month
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆65Updated 8 months ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆83Updated 5 months ago
• p0dalirius / objectwalker
  A python module to explore the object tree to extract paths to interesting objects in memory.
  ☆79Updated 8 months ago
• Icare1337 / LibreOffice_Tips_Bug_Bounty
  Some tips for Bug Bounty using LibreOffice
  ☆33Updated 4 months ago
• kleiton0x00 / Todesstern
  A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
  ☆64Updated 8 months ago
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆113Updated last year
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆85Updated 9 months ago
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆138Updated 3 months ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆107Updated 4 months ago
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆86Updated 7 months ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆67Updated last year
• pruzko / hakuin
  A blazing fast Blind SQL Injection optimization and automation framework.
  ☆118Updated last week
• doyensec / protoburp
  Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages
  ☆36Updated last year
• assetnote / exploits
  Repository to store exploits created by Assetnotes Security Research team
  ☆175Updated last year
• binganao / CVE-2024-23897
  ☆98Updated 9 months ago
• sinsinology / CVE-2024-4358
  Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
  ☆74Updated 5 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆117Updated 2 weeks ago
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆75Updated last year
• google / protobuf-extensibility-for-burp
  ☆83Updated 4 months ago
• nxenon / h2spacex
  HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆143Updated 2 weeks ago
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension
  ☆166Updated 4 months ago
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆60Updated 4 months ago