Search Results for "http header injection" - Page 5
Sort By:
Showing 206 open source projects for "http header injection"
View related business solutions-
Build Securely on AWS with Proven FrameworksMoving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
-
Atera - an All-in-one platform for IT managementYour IT essentials, integrated & elevated. Take your IT management from automated to autonomous, download Atera's agent to start your free trial!
-
1
OfficeFloor
inversion of coupling control
OfficeFloor provides inversion of coupling control, with its: - dependency injection - continuation injection - thread injection For more information visit the OfficeFloor web site ( http://officefloor.net ) -
2
PHP mini vulnerability suite
Multiple server/webapp vulnerability scanner
github: https://github.com/samedog/phpmvs -
3
HTTP Proxy Injector
Custom HTTP Proxy Header Injection Application
HTTP Proxy Injector Custom HTTP Proxy Header Injection Application HTTP Proxy Injector is a simple but powerful tool to modify http proxy header requests and respons, to use with SSH or VPN on Windows OS. Access blocked websites behind firewall and many other functions. Free to use for everyone. Want to help HTTP Proxy Injector keep in existence and get better ? -
4
KonsolScript: Automate and Orchestrate
Embeddable scripting runtime for live behavior, AI, and automation.
...Hot-reload behavior, patch running apps, and orchestrate AI workflows - without rebuilding or redeploying the binary. Ship once. Evolve forever. Key capabilities: - Embed into any C++ app with a single header - Hot-reload scripts at runtime without restarting - AI-safe: validate or reject scripts before execution - Orchestrate LLMs (OpenAI, Claude, Gemini, Ollama) in .ks scripts - Built-in: String, File, JSON, CSV, Math, Regex, and more - Plugins: HTTP, SQLite, MySQL, TCP, Redis, Crypto, JWT, Zip - Push behavior updates to remote instances over TCP Use cases: - Scriptable game engines (hot-patch rules mid-session) - AI event bridges (natural language to live app behavior) - Automation pipelines (CI, log triage, file processing) - LLM orchestration workflows Docs: https://konsolscript.sf.net/kookbook.html -
MongoDB Atlas runs apps anywhereMongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
-
5
OWASP ModSecurity CRS
OWASP ModSecurity Core Rule Set (CRS) Project
The OWASP ModSecurity Core Rule Set (CRS) is a curated, generic Web Application Firewall rule set that detects and blocks common attack categories across most web apps. It focuses on broad protection—SQL injection, cross-site scripting, local/remote file inclusion, command injection, and protocol violations—without requiring app-specific knowledge. Rules are organized into paranoia levels so operators can tune detection aggressiveness and balance false positives against coverage. An anomaly-scoring model accumulates rule hits per request, enabling nuanced blocking thresholds and easier incident triage. ... -
6
mod_spamhaus_new
Apache 2.4.x security, block known bad IP
mod_spamhaus_new is an Apache module that uses DNSBL in order to block spam relay via web forms, preventing URL injection, block HTTP DDoS attacks from bots and generally protecting your web service denying access to a known bad IP address. This module is based on mod_spamhaus but has been updated for actual web server configurations and to support a list of domains, which are NOT spam blocked so customers can reach you even if they got a dynamic IP which is on a spam list. ... -
7
JavaScript CSRF Protection Bundle
Automatic CSRF protection for JavaScript apps using a Symfony API
Archived! Now that all modern browsers implement SameSite cookies and the Origin HTTP header, this bundle is - in most cases - not necessary anymore. Learn how to protect your Symfony APIs from CSRF attacks. If you need to maintain old applications, take a look to DneustadtCsrfCookieBundle. This API Platform and Symfony bundle provides automatic Cross Site Request Forgery (CSRF or XSRF) protection for client-side applications. -
8
TCP Over HTTP Tunnel
TCP Over HTTP Tunnel Client with Header Host Support ( Injector ).
TCP Over HTTP Tunnel Free Server Provided by Fastssh.com Server: tcp.serverip.co Ports: 80, 8080, 3128 Password: fastssh.com Works only with fastssh.com SSH accounts. In some networks, the use of CONNECT method is blocked. In such cases, an HTTP tunnel can still be implemented using only the usual HTTP methods as POST, GET, PUT and DELETE. The server runs outside the blocked network and acts as a special HTTP server. The client program is run on a computer inside the... -
9
pah
A Java library for handling the HTTP Accept header
-
$300 Free Credits to Build on Google CloudStart your next project with $300 in free Google Cloud credit. Spin up VMs, run containers, query petabytes in BigQuery, or build agents with Gemini Enterprise Agent Platform. Once your credits are used, keep building with 20+ always-free tier products including Compute Engine, Cloud Storage, GKE, and Cloud Run functions. No commitment required—just sign up and start building.
-
10
inspectIT
inspectIT is the leading Open Source APM
inspectIT is the leading open-source APM (application performance management) tool for monitoring and analyzing your Java(EE) software applications. Various sensors capture end-to-end information for every request from the end user, to the business tier all the way to the backends. inspectIT is based on an application-centric, business-focused approach, where each technical request is mapped to an application and to a business use case. With inspectIT you always know about the health of your... -
11
basic-auth
Generic basic auth Authorization header field parser
Generic basic auth Authorization header field parser for whatever. This is a Node.js module available through the npm registry. Get the basic auth credentials from the given request. The Authorization header is parsed and if the header is invalid, undefined is returned, otherwise an object with name and pass properties. Parse a basic auth authorization header string. This will return an object with name and pass properties, or undefined if the string is invalid. -
12
HB Reports
TReportPrinter component for Delphi and Firemonkey
TReportPrinter Lightweight code based reporting for Delphi VCL and Firemonkey. For developers who prefer to create Reports quickly in code rather than wasting time with a hard to learn, slow to build graphical designer. Designed to have a high degree of backward code compatibility with Nevrona Rave Reports but in active development and forward looking for your new Firemonkey applications. Demo projects included with the files Documentation here... -
13
Aglyph
Aglyph is a Dependency Injection framework for Python.
Aglyph is a Dependency Injection framework for Python, supporting type 2 (setter) and type 3 (constructor) injection. Aglyph runs on CPython (http://www.python.org/) 2.7 and 3.4+, and on recent versions of the PyPy (http://pypy.org/>),Jython (http://www.jython.org/), IronPython (http://ironpython.net/), and Stackless Python (http://www.stackless.com/) variants. -
14
APIthet
An Application to security test RESTful web APIs.
APIthet is an application to security test RESTful web APIs. Assessing APIs help in detecting security vulnerabilities at an early stage of the SDLC. Compare this with assessing an Android application that uses APIs on a backend server. This kind of assessment happens at a much later phase of the SDLC. Even worse, it does not necessarily touch all the APIs. That's not all. You specify one of the JSON parameters as random. This helps set a unique value for a specific JSON parameter in... -
15
Zeus Scanner
Advanced reconnaissance utility
...It also supports proxy configurations, Tor proxy compatibility, and Tor browser emulation for flexible routing during authorized assessments. Zeus-Scanner includes checks for issues such as XSS, SQL injection, clickjacking, exposed admin panels, port scanning, whois lookup, and header protection. It is most useful for penetration testers and researchers who need a broad reconnaissance toolkit, though its older Python 2-style setup makes environment compatibility important. -
16
Ethernet POWERLINK XDD Tool Suite
Provides eclipse plugins for XDD edit, validation and OD generation.
The plugins include functionality to edit and check CN / MN XDD / XDC files against the DS311 V1.2.0 and the DS 301 1.3.0 specification. Another plugin enables the user to generate the object dictionary header file from an XDD / XDC file for the openPOWERLINK (https://goo.gl/Cg77Oi) implementation. Please note that the validation functionality works properly for Controlled and Managing Node XDD / XDC files. Please use the update site to install the plugin in your eclipse environment: http://sourceforge.net/projects/xddpluginsuite.openconf.p/files/update_site/ User Manual: https://goo.gl/hvtLAq XDD editor plugin user manual: https://goo.gl/Fo5pUQ Install via Eclipse marketplace: https://goo.gl/eAZAn9 Link to the openCONFIGURATOR parent project: https://sourceforge.net/projects/openconf/ -
17
cpDetector is a proxy for codepage detection of documents. It delegates to multiple instances that try to detect the codepage by different techinques. A command line executeable is shipped that allows to sort documents by codepage.
-
18
mod_auth_trustheader
apache-2.x module to get userid from header|environment|SSL variable
Mostly copied from mod_auth_basic of apache-2.2. The basic-auth handshake was replaced by some code which gets the userid out of a customable variable. The variable could be anything ap_expr could read in authentication hook, e.g.: a header field, a httpd environment variable or an SSL environment variable. The syntax is the same known from RewriteCond of mod_rewrite: e.g.: %{HTTP:variable}, %{ENV:variable} or %{SSL:variable} No password is written into internal httpd variables. So... -
19
TOFFEE-DataCenter
Linux Server and Data-Center WAN Optimization
TOFFEE-DataCenter is the new TOFFEE variant meant for Data-Center, Server, HPC, Load Balancing, Cluster/Cloud Computing and SDN deployments. With TOFFEE-DataCenter (and or TOFFEE), OEMs and other equipment vendors can make use of this platform/stack, integrate, port and build WAN Optimization devices/appliances on to their existing product range. Or build a dedicated WAN Optimization hardware product series via the same. -
20
ng-token-auth
Token based authentication module for angular.js
ng‑token‑auth is an AngularJS module that provides token-based authentication for single-page applications by coordinating with server-side token systems like the devise_token_auth gem. Oauth2 authentication. Email authentication, including user registration. Password reset, account updates, account deletion, seamless integration with the devise token auth Rails gem, and extensive event notifications. This module relies on token based authentication. This requires coordination between the... -
21
HTTPResponse, URL and QueryString Parser
C++ Parser to parse HTTP Response header, URL and HTTP Query String
Light weight and stylish parser to parse HTTP Response header, URL and Query string. It is available in both C and C++ styles -
22
NRRD Image Library for C++
Header Only C++ Library to read and write NRRD image files
This is a Header-Only implementation of the NRRD Image file format. It supports all basic C-types and automatically converts to the type you want. It is templated and allows reading and writing user-defined meta-information to the NRRD-header. It implements "the most important" parts of the following standard: http://teem.sourceforge.net/nrrd/format.html - Does not implement: line skip, byte skip, orientations, encodings other than raw, kinds other than domain... -
23
lua-resty-waf
High-performance WAF built on the OpenResty stack
...The result is a flexible, scriptable WAF that pairs the performance of NGINX with the expressiveness of Lua for nuanced HTTP defense. -
24
payloadmask
Payload list editor to use techniques to bypass WAF
Payload mask tool to edit web payload lists to try bypass web application firewall. A web application firewall (WAF) is an appliance, server plugin, or filter that applies a set of rules to an HTTP conversation. Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection. By customizing the rules to your application, many attacks can be identified and blocked. -
25
Parse C++ header files using ply.lex to generate navigable class tree representing the class structure. CppHeaderParser.py has the advantage of being a pure python C++ header parser. Grap a copy of ply at http://www.dabeaz.com/ply/
