Httppwnly Alternatives

Name: Danladi/HttpPwnly
Brand: Danladi/HttpPwnly
SKU: project/Danladi/HttpPwnly
Rating: 4.47 (129 reviews)

\"Repeater\" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protection against session hijacking via XSS

Categories > Security > Proxy

Suggest Alternative

Stars

129

Alternatives

License

No license specified

Open Issues

Most Recent Commit

over 8 years ago

Programming Language

HTML

Dependent Repos

Dependent Packages

Total Releases

Categories

Web User Interface > Html

Networking > Proxy

Security > Exploitation

Security > Xss

Networking > Reverse Proxy

Repo

Alternatives To Danladi/HttpPwnly

Project Name	Stars	Repos Using This	Packages Using This	Most Recent Commit	Total Releases	Latest Release	Open Issues	License	Language
m4n3dw0lf/pythem	1,172	0	0	about 7 years ago	7	March 05, 2018	10	gpl-3.0	Python
pentest framework
Ekultek/Pybelt	423	0	0	over 7 years ago	0		0		Python
The hackers tool belt
wrenchonline/glint	373	0	0	about 2 years ago	0		9	gpl-3.0	Go
glint 是一款基于浏览器爬虫golang开发的web漏洞主动(被动)扫描器
YagamiiLight/Cerberus	246	0	0	over 6 years ago	0		5		Python
一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
mandatoryprogrammer/xsshunter_client	224	0	0	over 3 years ago	0		11		Python
Correlated injection proxy tool for XSS Hunter
shadow-workers/shadow-workers	196	0	0	over 2 years ago	0		0	mit	JavaScript
Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
koto/mosquito	143	0	0	about 12 years ago	0		0		Tcl
XSS exploitation tool - access victims through HTTP proxy
Danladi/HttpPwnly	129	0	0	over 8 years ago	0		2		HTML
"Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protection against session hijacking via XSS
rmb122/xss-receiver	73	0	0	almost 3 years ago	0		0	gpl-3.0	Python
简单易用的 xss 接收平台 + payload 管理平台
hasegawayosuke/vurp	54	0	0	almost 9 years ago	0		0		JavaScript
vurp is a vulnerable reverse proxy.

Alternatives To Danladi/HttpPwnly

Select To Compare

m4n3dw0lf/pythem ⭐ 1,172

pentest framework

dependent packages 0 total releases 7 most recent commit about 7 years ago downloads badge

Ekultek/Pybelt ⭐ 423

The hackers tool belt

dependent packages 0 total releases 0 most recent commit over 7 years ago

wrenchonline/glint ⭐ 373

glint 是一款基于浏览器爬虫golang开发的web漏洞主动(被动)扫描器

dependent packages 0 total releases 0 most recent commit about 2 years ago

YagamiiLight/Cerberus ⭐ 246

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

dependent packages 0 total releases 0 most recent commit over 6 years ago

mandatoryprogrammer/xsshunter_client ⭐ 224

Correlated injection proxy tool for XSS Hunter

dependent packages 0 total releases 0 most recent commit over 3 years ago

shadow-workers/shadow-workers ⭐ 196

Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

dependent packages 0 total releases 0 most recent commit over 2 years ago

koto/mosquito ⭐ 143

XSS exploitation tool - access victims through HTTP proxy

dependent packages 0 total releases 0 most recent commit about 12 years ago

Danladi/HttpPwnly ⭐ 129

"Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protection against session hijacking via XSS

dependent packages 0 total releases 0 most recent commit over 8 years ago

rmb122/xss-receiver ⭐ 73

简单易用的 xss 接收平台 + payload 管理平台

dependent packages 0 total releases 0 most recent commit almost 3 years ago

hasegawayosuke/vurp ⭐ 54

vurp is a vulnerable reverse proxy.

dependent packages 0 total releases 0 most recent commit almost 9 years ago

Suggest An Alternative To HttpPwnly

Alternative Project Comparisons

Danladi/HttpPwnly vs Pythem

Danladi/HttpPwnly vs Pybelt

Danladi/HttpPwnly vs Glint

Danladi/HttpPwnly vs Cerberus

Danladi/HttpPwnly vs Xsshunter_client

Danladi/HttpPwnly vs Shadow Workers

Danladi/HttpPwnly vs Mosquito

Danladi/HttpPwnly vs Httppwnly

Danladi/HttpPwnly vs Xss Receiver

Danladi/HttpPwnly vs Vurp

Popular Xss Projects

Z4nzu/hackingtool⭐ 40,968

ALL IN ONE Hacking Tool For Hackers

chaitin/SafeLine⭐ 20,423

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

Hacker0x01/hacker101⭐ 13,234

Source code for Hacker101.com - a free online web and mobile security class.

cure53/DOMPurify⭐ 12,348

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

s0md3v/XSStrike⭐ 12,339

Most advanced XSS scanner.

Popular Proxy Projects

fatedier/frp⭐ 76,428

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

shadowsocks/shadowsocks-windows⭐ 57,580

A C# port of shadowsocks

2dust/v2rayN⭐ 56,979

A GUI client for Windows, support Xray core and v2fly core and others

soimort/you-get⭐ 48,778

:arrow_double_down: Dumb downloader that scrapes the web

traefik/traefik⭐ 46,401

The Cloud Native Application Proxy

Popular Security Categories

Security

Token

Authentication

Password

Oauth

Scanner

Cryptography

Ssh

Role

Session