Interesting Snippets from 2025-10-15

• GitHub - ssl/ezXSS: ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

  ezXSS is a tool that is designed to help find and exploit cross-site scripting (XSS) vulnerabilities. One of the key features of ezXSS is its ability to identify and exploit blind XSS vulnerabilities, which can be difficult to find using traditional methods.

• Introducing lorito, an HTTP security suite | by Claudio Salazar | Medium

  This post introduces lorito, a new open-source project to handle web exploitation and more!

• GitHub - csalazar/lorito

  lorito - HTTP security suite

• GitHub - mtlynch/picoshare: A minimalist, easy-to-host service for sharing images and other files

  PicoShare is a minimalist service that allows you to share files easily.

• GitHub - jhaals/yopass: Secure sharing of secrets, passwords and files

  Yopass is a project for sharing secrets in a quick and secure manner. The sole purpose of Yopass is to minimize passwords floating around in ticket management systems, Slack messages, and emails. Messages are encrypted/decrypted locally in the browser and sent to Yopass without the decryption key, which is only visible once during encryption. Yopass then returns a one-time URL with a specified expiry date.

• Yopass: Share Secrets Securely

  Yopass is created to reduce the amount of clear text passwords stored in email and chat conversations by encrypting and generating a short lived link which can only be viewed once.

• dnsdist Overview — dnsdist documentation

  dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life is to route traffic to the best server, delivering top performance to legitimate users while shunting or blocking abusive traffic.

• GitHub - juicity/juicity: juicity is a quic-based proxy protocol implementation.

  Juicity is a quic-based proxy protocol and implementation, inspired by tuic (with many thanks).

• Mutual TLS (mTLS) in-depth: step-by-step case study feat. Bitwarden, Vaultwarden, Traefik and Smallstep - zoug.fr

  mTLS to a Vaultwarden/Bitwarden self-hosted server (or any other web-app, really), using Smallstep to create our custom certificate authority and certificates, and Traefik as our reverse proxy.

• Cloudflare Browser Check | Cloudflare

  When you browse websites, there are several points where your privacy could be compromised, such as by your ISP or the coffee shop owner providing your WiFi connection. This page automatically tests whether your DNS queries and answers are encrypted, whether your DNS resolver uses DNSSEC, which version of TLS is used to connect to the page, and whether your browser supports securing the Server Name Indication (SNI) using Encrypted Client Hello (ECH).

[/snippets] permanent link