Awesome Open Source

Programming Languages

Httppwnly

"Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protection against session hijacking via XSS

Categories > Security > Xss

Suggest Alternative

Stars

129

License

No license specified

Most Recent Commit

6 years ago

Programming Language

HTML

Categories

Web User Interface > Html

Networking > Proxy

Security > Exploitation

Security > Xss

Networking > Reverse Proxy

Alternatives To Httppwnly

Project Name	Stars	Downloads	Repos Using This	Packages Using This	Most Recent Commit	Total Releases	Latest Release	Open Issues	License	Language
Pythem	1,172				5 years ago	7	March 05, 2018	10	gpl-3.0	Python
pentest framework
Pybelt	423				6 years ago					Python
The hackers tool belt
Glint	373				3 months ago			9	gpl-3.0	Go
glint 是一款基于浏览器爬虫golang开发的web漏洞主动(被动)扫描器
Cerberus	246				4 years ago			5		Python
一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
Xsshunter_client	224				a year ago			11		Python
Correlated injection proxy tool for XSS Hunter
Shadow Workers	196				7 months ago				mit	JavaScript
Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
Mosquito	143				10 years ago					Tcl
XSS exploitation tool - access victims through HTTP proxy
Httppwnly	129				6 years ago			2		HTML
"Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protection against session hijacking via XSS
Xss Receiver	73				a year ago				gpl-3.0	Python
简单易用的 xss 接收平台 + payload 管理平台
Vurp	54				7 years ago					JavaScript
vurp is a vulnerable reverse proxy.

Alternatives To Httppwnly

Select To Compare

Pythem ⭐ 1,172

pentest framework

total releases 7most recent commit 5 years ago

The hackers tool belt

most recent commit 6 years ago

glint 是一款基于浏览器爬虫golang开发的web漏洞主动(被动)扫描器

most recent commit 3 months ago

Cerberus ⭐ 246

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产 bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQ XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

most recent commit 4 years ago

Xsshunter_client ⭐ 224

Correlated injection proxy tool for XSS Hunter

most recent commit a year ago

Shadow Workers ⭐ 196

Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

most recent commit 7 months ago

Mosquito ⭐ 143

XSS exploitation tool - access victims through HTTP proxy

most recent commit 10 years ago

Httppwnly ⭐ 129

"Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protection against session hijacking via XSS

most recent commit 6 years ago

Xss Receiver ⭐ 73

简单易用的 xss 接收平台 + payload 管理平台

most recent commit a year ago

vurp is a vulnerable reverse proxy.

most recent commit 7 years ago

Suggest An Alternative To HttpPwnly

Alternative Project Comparisons

Httppwnly vs Pythem

Httppwnly vs Pybelt

Httppwnly vs Glint

Httppwnly vs Cerberus

Httppwnly vs Xsshunter_client

Httppwnly vs Shadow Workers

Httppwnly vs Mosquito

Httppwnly vs Xss Receiver

Httppwnly vs Vurp

Popular Xss Projects

Hackingtool ⭐ 40,968

ALL IN ONE Hacking Tool For Hackers

most recent commit 5 months ago

Hacker101 ⭐ 13,234

Source code for Hacker101.com - a free online web and mobile security class.

most recent commit 4 months ago

Dompurify ⭐ 12,619

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

dependent packages 1,678total releases 99latest release September 28, 2023most recent commit a month ago

npm dompurify} Downloads

Xsstrike ⭐ 12,619

Most advanced XSS scanner.

most recent commit a month ago

Jsoup ⭐ 10,463

jsoup: the Java HTML parser, built for HTML editing, cleaning, scraping, and XSS safety.

dependent packages 1,763total releases 44latest release November 27, 2023most recent commit 3 months ago

Popular Proxy Projects

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

dependent packages 18total releases 93latest release October 24, 2023most recent commit 3 months ago

Shadowsocks Windows ⭐ 57,904

A C# port of shadowsocks

most recent commit 6 months ago

V2rayn ⭐ 56,979

A GUI client for Windows, support Xray core and v2fly core and others

most recent commit 3 months ago

You Get ⭐ 48,778

:arrow_double_down: Dumb downloader that scrapes the web

total releases 14latest release July 02, 2022most recent commit 3 months ago

V2ray Core ⭐ 44,306

A platform for building proxies to bypass network restrictions.

dependent packages 41total releases 4latest release June 03, 2019most recent commit 3 months ago

Popular Security Categories

Get A Weekly Email With Trending Projects For These Categories

No Spam. Unsubscribe easily at any time.

Html

Proxy

Exploitation

Xss

Reverse Proxy

Privacy | About | Terms | Follow Us On Twitter

Downloads, Dependent Repos, Dependent Packages, Total Releases, Latest Releases data powered by Libraries.io.

Copyright 2018-2024 Awesome Open Source. All rights reserved.