Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/portswigger/hackability
Probe a rendering engine for vulnerabilities and other features
https://github.com/portswigger/hackability
Last synced: about 3 hours ago
JSON representation
Probe a rendering engine for vulnerabilities and other features
- Host: GitHub
- URL: https://github.com/portswigger/hackability
- Owner: PortSwigger
- Created: 2017-07-27T07:14:53.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2021-10-13T03:28:50.000Z (about 3 years ago)
- Last Synced: 2024-12-17T04:06:45.554Z (7 days ago)
- Language: JavaScript
- Homepage:
- Size: 149 KB
- Stars: 366
- Watchers: 22
- Forks: 56
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
Rendering Engine Hackability Probe performs a variety of tests to discover what the unknown rendering engine supports. To use it simply extract it to your web server and visit the url in the rendering engine you want to test. The more successful probes you get the more likely the target engine is vulnerable to attack.
For further information, please refer to the whitepaper at [https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface](https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface)
You can find a public demo here: https://portswigger-labs.net/hackability/