-
Stars16
-
Rank 1,303,994 (Top 26 %)
-
LanguagePython
-
Created over 4 years ago
-
Updated over 4 years ago
Reviews
There are no reviews yet. Be the first to send feedback to the community and the maintainers!
Repository Details
Proof of Concept for a VSCode Python Extension Code Execution Vulnerability
More Repositories
1
inql
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.Python
1,510
2
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.JavaScript
953
3
regexploit
Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)Python
779
4
awesome-electronjs-hacking
A curated list of awesome resources about Electron.js (in)security
558
5
burpdeveltraining
Material for the training "Developing Burp Suite Extensions β From Manual Testing to Security Automation"Java
345
6
wsrepl
WebSocket REPL for pentestersPython
194
7
Session-Hijacking-Visual-Exploitation
Session Hijacking Visual ExploitationJavaScript
189
8
PESD-Exporter-Extension
PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsHTML
94
9
ajpfuzzer
A command-line fuzzer for the Apache JServ Protocol (ajp13)Java
91
10
safeurl
A Server Side Request Forgery (SSRF) protection library. Made with π€ by Doyensec LLC.Go
89
11
CSPTBurpExtension
CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.Java
79
12
Prototype-Pollution-Gadgets-Finder
Python
73
13
StandardizedImageProcessingTest
A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the webJavaScript
68
14
PoiEx
π Visualize and explore IaC βοΈ Create and share notes in VS Code π€ Sync notes and findings in real-time with friendsTypeScript
68
15
GQLSpection
GQLSpection - parses GraphQL introspection schema and generates possible queriesPython
64
16
HopperTheme
Doyensec theme for the Hopper Disassembler - chill and functional for long RE nights
55
17
oidc-ssrf
An Evil OIDC ServerGo
49
18
cloudsec-tidbits
Blogpost series showcasing interesting cloud - web app security bugs
HCL
44
19
confuser
Dependency Confusion Security Testing ToolPython
39
20
vbox-fuzz
Companion to the "Introduction to VirtualBox security research" Blog PostC++
29
21
CVE-2022-39299_PoC_Generator
A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-samlPython
17
22
r2pickledec
Pickle decompiler plugin for Radare2C
14
23
imagemagick-security-policy-evaluator
The ImageMagick Security Policy Evaluator allows developers and security experts to check if an XML Security Policy is hardened against a wide set of malicious attacks. It assists with the process of reviewing such policies, which is usually a manual task, and helps identify the best practices for ImageMagick deployments.JavaScript
14
24
electronegativity-action
The action integrates Electronegativity, a tool to identify misconfigurations and security anti-patterns in Electron applications, into GitHub CI/CD.
14
25
webext_boilerplate
Web extension boilerplate files for web application testers.JavaScript
7
26
db-race-conditions-playground
Database Race Condition Playground. Made with 𧑠by Doyensec LLC.JavaScript
6
27
ThereAreBugsEverywhere
Doyensec Wallpapers - ThereAreBugsEverywhere Theme
5
28
libajp13
AJPv1.3 Java LibraryJava
4
29
wallet-info
A web service providing Ethereum Dapp information. Made with π€ by Doyensec LLC.Go
4
30
SoloKeys-2020Q1-fw-downgrade-PoC
SoloKeys firmware downgrade proof of conceptPython
3
31
libressl-portable
C
1