DOM XSS scanner for Single Page Applications DOMdig is a tool designed to detect and exploit DOM-based Cross-Site Scripting (XSS) vulnerabilities in Single Page Applications (SPAs). It uses a combination of techniques to identify and exploit XSS vulnerabilities, including * Static analysis of the application's HTML and JavaScript code * Dynamic analysis of the application's behavior * Fuzz testing to identify potential vulnerabilities DOMdig is a powerful tool for identifying and exploiting XSS vulnerabilities in SPAs, and can be used by security researchers, developers, and penetration testers to improve the security of their applications.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A program to manage yara ruleset in a database with support for different databases and configuration options.
PinCTF is a tool for using Intel's Pin Tool to instrument reverse engineering binaries and count instructions.
A tool that extracts and deobfuscates strings from malware binaries using advanced static analysis techniques.
A binary analysis and management framework for organizing and analyzing malware and exploit samples, and creating plugins.
Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.
Code to prevent a managed .NET debugger/profiler from working.
A collaborative malware analysis framework with various features for automated analysis tasks.
Joe Sandbox Community provides automated cloud-based malware analysis across multiple OS platforms.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.