hackvertor

hackvertor

blind-css-exfiltration

MentalJS

JavaScript parser and sandbox

visualfuzzer

A visual fuzzer written in NodeJS to find Zalgo characters

shadow-repeater

repeat-strike

clickbandit

A JavaScript clickjacking PoC generator

taborator

A Burp extension to show the Collaborator client in a tab

HTTPLeaks

HTTPLeaks - All possible ways, a website can leak HTTP requests

server-side-prototype-pollution

albinowaxUtils

document-my-pentest

3d-css-tutorial

amplify-the-hacker

This repository is to store materials and links for my SteelCon talk "Amplify the hacker"

bambdas

Bambdas collection for Burp Suite Professional and Community.

diffy

A BApp to show the differences between two responses

DOMPurify

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

param-miner

release-action

An action which manages a github release

SAMLRaider

SAML2 Burp Extension

turbo-intruder

Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.