Chrome extension and Express server that exploits keylogging abilities of CSS.
updated at May 21, 2024, 6:55 p.m.
Checklist of security precautions for Ruby on Rails applications.
updated at May 21, 2024, 5:23 p.m.
Rip web accessible (distributed) version control systems: SVN/GIT/HG...
updated at May 21, 2024, 2:43 p.m.
bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
updated at May 21, 2024, 1:58 p.m.
Automated Security Testing For REST API's
updated at May 21, 2024, 11:53 a.m.
Analyze the security of any domain by finding all the information possible. Made in python.
updated at May 20, 2024, 11:39 p.m.
Tool to scan for secret files on HTTP servers
updated at May 20, 2024, 11:58 a.m.
🎯 Open Redirect Payload List
updated at May 19, 2024, 7:46 p.m.
A collection of JavaScript engine CVEs with PoCs
updated at May 17, 2024, 3:13 p.m.
Auditing for TLS certificates.
updated at May 17, 2024, 1:20 p.m.
Stealing CSRF tokens with CSS injection (without iFrames)
updated at May 17, 2024, 12:28 p.m.