lauritzh

IT-Security Researcher and Pentester

Germany

Pinned Repositories

auth-request-analyser
This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attack capabilities for OAuth 2.0 and OpenID Connect 1.0 Authorization/Authentication Requests.
Language:JavaScript26 1 01
blind-xss-payloads
11 1 07
domscan
Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.
Language:JavaScript209 2 1129
md-report-generator
Python-based report generation toolchain based on Markdown input files. To start a fresh report, clone this repo and you are ready to go! 🚄
Language:Python2 2 03
oidc-custom-idp
Custom and flexible OpenID Connect IdP for research and PoC purposes
Language:JavaScript9 1 02
oidc-custom-sp
Custom and flexible OpenID Connect SP for research and PoC purposes
Language:JavaScript8 1 01
PoC-Using_ImageMagick_in_vulnerable_WebApps
Language:JavaScript2 0 00
xss-challenges
Language:PHP6 1 01

lauritzh's Repositories

lauritzh/domscan
Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.
Language:JavaScript209 2 1129
lauritzh/auth-request-analyser
This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attack capabilities for OAuth 2.0 and OpenID Connect 1.0 Authorization/Authentication Requests.
Language:JavaScript26 1 01
lauritzh/blind-xss-payloads
11 1 07
lauritzh/oidc-custom-idp
Custom and flexible OpenID Connect IdP for research and PoC purposes
Language:JavaScript9 1 02
lauritzh/oidc-custom-sp
Custom and flexible OpenID Connect SP for research and PoC purposes
Language:JavaScript8 1 01
lauritzh/xss-challenges
Language:PHP6 1 01
lauritzh/md-report-generator
Python-based report generation toolchain based on Markdown input files. To start a fresh report, clone this repo and you are ready to go! 🚄
Language:Python2 2 03
lauritzh/PoC-Using_ImageMagick_in_vulnerable_WebApps
Language:JavaScript2 0 00
lauritzh/Tracking-PoC
Short Implementation of tracking examples based on cached redirects (browser behaviour)
Language:PHP2 1 00
lauritzh/remote-js-debugger
Language:HTML1 1 00
lauritzh/dastardly-docker-test
PoC Config to scan a docker-based WebApp using PortSwigger's Dastardly within a Github Workflow
Language:Dockerfile
lauritzh/docker-wordpress-burp-setup
Minimal Docker setup to intercept backchannel Wordpress backchannel traffic
Language:PHP1 0
lauritzh/lauritzh
1 0
lauritzh/OAuth-RedirectURI-Android-App
Proof-of-Concept App to showcase OAuth / OIDC secret disclosure via redirect_uri
Language:Java
lauritzh/Pfadi-Liederbuch
Latex template for a song book
lauritzh/tool-repository
wip repository for custom tooling
Language:Python
lauritzh/workflows
🛠️ Workflows created by the community
Language:JavaScript

lauritzh

Pinned Repositories

auth-request-analyser

blind-xss-payloads

domscan

md-report-generator

oidc-custom-idp

oidc-custom-sp

PoC-Using_ImageMagick_in_vulnerable_WebApps

xss-challenges

lauritzh's Repositories

lauritzh/domscan

lauritzh/auth-request-analyser

lauritzh/blind-xss-payloads

lauritzh/oidc-custom-idp

lauritzh/oidc-custom-sp

lauritzh/xss-challenges

lauritzh/md-report-generator

lauritzh/PoC-Using_ImageMagick_in_vulnerable_WebApps

lauritzh/Tracking-PoC

lauritzh/remote-js-debugger

lauritzh/dastardly-docker-test

lauritzh/docker-wordpress-burp-setup

lauritzh/lauritzh

lauritzh/OAuth-RedirectURI-Android-App

lauritzh/Pfadi-Liederbuch

lauritzh/tool-repository

lauritzh/workflows