Endo is a distributed secure JavaScript sandbox, based on SES
A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
翻译 - 一个用 GO 编写的扫描器/漏洞利用工具,它通过利用已知的小工具来利用 Prototype Pollution to XSS。
A collection of Server-Side Prototype Pollution gadgets and exploits
The Most Advanced Client-Side Prototype Pollution Scanner
The Most Advanced Client-Side Prototype Pollution Scanner
Let's check if your target is vulnerable for client side prototype pollution.
A tool which helps identifying client-side prototype polluting libraries
A website developed with Nodejs. This website includes server side prototype pollution vulnerability
Detecting prototype pollution vulnerabilities in JavaScript using static analysis
Secure drop-in replacement for the `JSON` global with prototype pollution protection
JavaScript Prototype Pollution Attack demo against a NodeJS Express server using Lodash
A CTF challenge we put together for Ekoparty's 2023 main CTF
A sample application vulnerable to JavaScript prototype pollution
Prototype Pollution Checker is a security tool designed to detect potential Prototype Pollution vulnerabilities on target URLs by injecting payloads and verifying responses. This tool uses Selenium to...
My Write Up for Portswigger Prototype Polution Write Up
Gadgets in the JavaScript runtime based on the ECMAScript specification
Check prototype pollution in JS libraries