rafax00's Stars
assetnote/kiterunner
Contextual Content Discovery Tool
iagox86/hash_extender
indianajson/can-i-take-over-dns
"Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.
WebDevSimplified/React-Firebase-Auth
dolevf/graphw00f
graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.
BlackFan/content-type-research
Content-Type Research
kevin-mizu/domloggerpp
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
xnl-h4ck3r/XnlReveal
A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements.
dolevf/Black-Hat-GraphQL
The Black Hat GraphQL Book Repository
badadaf/apkpatcher
This script automates the task of patching an apk with frida-gadget
hackvertor/blind-css-exfiltration
xssdoctor/graphqlMaker
Finds graphql queries in javascript files
rafax00/PrototypePollution-Lab
Prototype Pollution Lab
badadaf/badada
elttam/plormber
akenofu/URL_Fuzzer_401_403_Bypass
A Burp extension to Fuzz URLs for HTTP parser inconsistencies
rafax00/ZeroXRequests
Raw Requests for python - without client-side security checking