shadow-workers
Exploitation tool
Tool designed to facilitate exploitation of XSS and malicious Service Workers in penetration testing
Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
226 stars
9 watching
46 forks
Language: JavaScript
last commit: over 1 year ago
Linked from 1 awesome list
c2penetration-testing-toolsproxyservice-workerxss-exploitation
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 evilcos/xssor2 | A tool designed to demonstrate cross-site scripting (XSS) vulnerabilities and exploits using JavaScript and Django. | 2,141 |
 webdriverio/query-selector-shadow-dom | A tool to easily select elements in web page shadows even when you don't know the path through nested shadow roots. | 249 |
 alicangnll/pyshadow | Analyzes and recovers deleted data from Windows shadow copies | 6 |
 mandatoryprogrammer/xsshunter | A service designed to test for cross-site scripting (XSS) vulnerabilities in web applications by automatically firing XSS payloads and collecting information about the resulting responses. | 1,501 |
 s0md3v/striker | An offensive information and vulnerability scanner that identifies potential security issues in web applications | 2,238 |
| mandatoryprogrammer/xsshunter_client | An instrument used to hunt and identify cross-site scripting (XSS) vulnerabilities by tracking correlated requests and payloads. | 250 |
 0xsp-srd/mortar | A toolset designed to evade detection by security products and execute malware safely | 1,421 |
 byt3bl33d3r/silenttrinity | An asynchronous, collaborative post-exploitation framework that uses .NET's DLR to dynamically call APIs and offers features like multi-user collaboration, real-time updates, and dynamic compilation of tasks. | 2,204 |
 sukgu/shadow-automation-selenium | A Selenium plugin for automating shadow DOM elements and custom HTML tags in web applications built with Polymer. | 111 |
 c3r3br4t3/shadowrdp | Tools to exploit remote desktop sessions using NTLM and Kerberos authentication | 62 |
 menkrep1337/xsscon | A tool designed to scan websites for Cross-Site Scripting (XSS) vulnerabilities | 214 |
 spidermate/b-xssrf | A toolkit to detect and track vulnerabilities in web applications | 295 |
 hipotermia/vaya-ciego-nen | Detects and exploits Blind Cross-site scripting (XSS) vulnerabilities to retrieve sensitive information and control user interactions. | 41 |
 lgcarmo/wpexploitation | A tool designed to facilitate the collection of information on Windows systems during a penetration test | 0 |
 sslab-gatech/pwn2own2020 | An exploitation project demonstrating how to chain vulnerabilities in Safari to escalate privilege on macOS | 404 |