lauritzh

Lauritz's repositories

domscan

Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.

Language:JavaScript180 2 11

This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attack capabilities for OAuth 2.0 and OpenID Connect 1.0 Authorization/Authentication Requests.

Language:JavaScriptApache-2.026 10

oidc-custom-idp

Custom and flexible OpenID Connect IdP for research and PoC purposes

Language:JavaScriptUnlicense9 10

blind-xss-payloads

8 10

oidc-custom-sp

Custom and flexible OpenID Connect SP for research and PoC purposes

Language:JavaScriptUnlicense8 10

xss-challenges

Language:PHP4 10

md-report-generator

Python-based report generation toolchain based on Markdown input files. To start a fresh report, clone this repo and you are ready to go! 🚄

Language:PythonUnlicense2 20

PoC-Using_ImageMagick_in_vulnerable_WebApps

Language:JavaScript200

Tracking-PoC

Short Implementation of tracking examples based on cached redirects (browser behaviour)

Language:PHP2 10

remote-js-debugger

Language:HTML1 10

dastardly-docker-test

PoC Config to scan a docker-based WebApp using PortSwigger's Dastardly within a Github Workflow

Language:Dockerfile000

docker-wordpress-burp-setup

Minimal Docker setup to intercept backchannel Wordpress backchannel traffic

Language:PHP010

lauritzh

010

OAuth-RedirectURI-Android-App

Proof-of-Concept App to showcase OAuth / OIDC secret disclosure via redirect_uri

Language:Java000

Pfadi-Liederbuch

Latex template for a song book

000

tool-repository

wip repository for custom tooling

Language:Python000