From kalilinuxtutorials.com
![CorsMe : Cross Origin Resource Sharing MisConfiguration Scanner](https://i2.wp.com/1.bp.blogspot.com/-L9ZW3lCRyo8/XxDec1k0MAI/AAAAAAAAG5c/KuFY4Zp5rysAVyev7v5amirFk5t1klFCgCLcBGAsYHQ/s1600/CorsMe%25281%2529.png?w=640&ssl=1)
- Reflect Origin checks
- Prefix Match
- Suffix Match
- Not Esacped Dots
- Null
- ThirdParties (Like => github.io, repl.it etc.)
- Taken from Chenjj’s github repo
- SpecialChars (Like => “}”,”(“, etc.)
- See more in Advanced CORS Exploitation Techniques