DOMdig
DOM XSS scanner for Single Page Applications DOMdig is a tool designed to detect and exploit DOM-based Cross-Site Scripting (XSS) vulnerabilities in Single Page Applications (SPAs). It uses a combination of techniques to identify and exploit XSS vulnerabilities, including * Static analysis of the application's HTML and JavaScript code * Dynamic analysis of the application's behavior * Fuzz testing to identify potential vulnerabilities DOMdig is a powerful tool for identifying and exploiting XSS vulnerabilities in SPAs, and can be used by security researchers, developers, and penetration testers to improve the security of their applications.
FEATURES
ALTERNATIVES
Generates a YARA rule to match basic blocks of the current function in IDA Pro
A freeware suite of tools for PE editing and process viewing, including CFF Explorer and Resource Editor.
Assembler/disassembler for the dex format used by Dalvik, Android's Java VM implementation.
Repository of TRISIS/TRITON/HatMan malware samples and decompiled sources targeting ICS Triconex SIS controllers.
Boomerang Decompiler is a machine code decompiler supporting various architectures and file formats, with a focus on high-level language output.
A cheat sheet for default credentials to aid in penetration testing and vulnerability assessment
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.