#

cross-site-scripting

Here are 59 public repositories matching this topic...

cure53 / DOMPurify

Sponsor

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

javascript svg html security dom xss mathml sanitizer dompurify cross-site-scripting prevent-xss-attacks

Updated Mar 29, 2022
JavaScript

andresriancho / w3af

w3af: web application attack and audit framework, the open source web vulnerability scanner.

security scanner sql-injection appsec cross-site-scripting

Updated Mar 11, 2022
Python

payloadbox / xss-payload-list

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

xss xss-vulnerability xss-scanners bugbounty xss-scanner xss-exploitation xss-detection payload payloads xss-attacks xss-injection websecurity dom-based xss-poc cross-site-scripting reflected-xss-vulnerabilities website-vulnerability xss-payloads self-xss xss-payload

Updated Mar 30, 2022

paragonie / csp-builder

Build Content-Security-Policy headers from a JSON file (or build them programmatically)

php http security csp xss http-header content-security-policy secure-by-default easy-to-use csp-header json-configuration csp-builder cross-site-scripting

Updated Sep 7, 2021
PHP

LewisArdern / bXSS

Open

Add Docker support

GeekMasher commented Mar 4, 2018

This will allow people to quickly pull your Docker image from the store to pull, spin up and run bXSS.

Read more

good first issue

ecriminal / phpvuln

🕸️ Audit tool to find common vulnerabilities in PHP source code

php hacking xss audit owasp penetration-testing sqli sql-injection vulnerability lfi command-injection cross-site-scripting local-file-inclusion

Updated Feb 22, 2022
Python

Damian89 / xssfinder

Toolset for detecting reflected xss in websites

xss python3 pentesting bugbounty vulnerability-detection itsecurity cross-site-scripting

Updated Oct 7, 2018
Python

dipakpanchal456 / CVE-2022-23808

phpMyAdmin XSS

database exploit hacking xss owasp phpmyadmin poc vulnerability infosec pentesting bugbounty exploitation owasp-top-10 redteaming zeroday redteam cross-site-scripting

Updated Feb 3, 2022

xadhrit / xira

xss vulnerability scanner and input fuzzing tool.

python3 vulnerability-scanners web-hacking cross-site-scripting pentesting-tools

Updated Aug 3, 2021
Python

The404Hacking / XsSCan

XsSCan | Web Application XSS Scanner | Coded By Sir.4m1R [Mr.Hidden]

python security scanner hacking xss scan subdomain xss-vulnerability security-scanner cross-site-scripting the404hacking xssscan

Updated Nov 22, 2018
Python

deep-security / aws-waf

Deep Security's APIs make it simple to integration with a variety of AWS Services

sql-injection security-automation iplist aws-waf cross-site-scripting deep-security

Updated Apr 24, 2019

Encryptor-Sec / XSSearch

XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for automating XSS attacks and validating XSS endpoint

linux selenium xss python3 chromedriver selenium-webdriver command-line-tool kali-linux cross-site-scripting reflected reflect-xss

Updated Feb 4, 2022
Python

BeefAuto

youhacker55 / BeefAuto

Automating Beef to use over wan without configuring your router

automation tool phishing ngrok kali-linux hacking-tool cross-site-scripting beef-xss beef-over-wan hook-browser

Updated Jul 18, 2021
JavaScript

tacticthreat / CookieHeist

PHP Cookie Stealing Scripts for use in XSS

php session-cookie xss-attacks cross-site-scripting session-hijacking

Updated Jul 26, 2018
PHP

ML-based-WAF

vladan-stojnic / ML-based-WAF

Simple machine learning based web application firewall (WAF) created in python

Updated Jul 30, 2020
Jupyter Notebook

Ak-wa / XSSRecon

XSSRecon - Reflected XSS Scanner

linux python3 kali-linux xss-scanner xss-exploitation kali-scripts cross-site-scripting scanner-web

Updated Oct 7, 2020
Python

michaeluno / php-simple-web-scraper

A PHP application which runs on Heroku and dumps web site outputs including JavaScript generated contents.

heroku php scraper phantomjs proxy web-scraper cross-domain heroku-application cross-origin cross-origin-resource-sharing cross-site cross-site-scripting crowler cross-domain-request cross-domain-solution

Updated Jun 22, 2021
PHP

J2TEAM / xss-me

A simple web application to learn about Cross-Site Scripting (XSS)

security xss xss-poc cross-site-scripting

Updated Oct 1, 2020
PHP

ivan-sincek / xss-catcher

Simple API for storing all incoming XSS requests.

javascript api php security offensive-security ethical-hacking cross-site-scripting cross-site-request-forgery

Updated Mar 28, 2022
HTML

Proviesec / xss-payload-list

xss-payload-list

security xss pentesting bugbounty cross-site-scripting

Updated Apr 2, 2022

xadhrit / xss-hacker

Cross Site Scripting Cheat sheet.

hacking xss webapp xss-vulnerability hacktoberfest cheatsheets cross-site-scripting payloads-database

Updated Apr 3, 2021

soosyze / kses

It removes all unwanted HTML elements and attributes, no matter how malformed HTML input you give it. Checks on attribute values. Can be used to avoid Cross-Site Scripting (XSS), Buffer Overflows and Denial of Service attacks, among other things.

php security filter xss web-security xss-attacks kses dompurify cross-site-scripting prevent-xss-attacks

Updated Dec 14, 2021
PHP

machinexa2 / XSSTerminal

Develop your own XSS Payload using interactive typing

interactive xss python3 terminal-based bugbounty ctf-tools cross-site-scripting xss-payload bug-bounty-hunters xss-development

Updated Sep 14, 2021
Python

BoofSec / anonfiles-xss-0day

anonfiles.com XSS 0day exploit

hack exploit hacking xss poc 0day zero-day cross-site-scripting anonfiles

Updated Dec 20, 2021
Python

doomguy / xsscan

A simple script to detect unescaped characters in a web application for e.g. Cross Site Scripting (XSS) attacks.

Updated Aug 20, 2020
Python

humblelad / Awesome-XSS-Payloads

Exotic and uncommon XSS Vectors to hit the target as quickly as possible.

xss-vulnerability security-testing cross-site-scripting

Updated May 27, 2020

p4p1 / xss_bomb

A cross site scripting command and control notification server

javascript android express xss expo cross-site-scripting webapplicationhacking hacking-tools burp-collaborator-server pentesting-tools penetration-testing-tools

Updated Dec 12, 2021
JavaScript

thomashartm / burp-domsink-logger

Injects a trusted types policy into an HTML page to log all DOM sinks whenever HTML is written into the DOM.

javascript java burp domxss burp-plugin security-tools burp-extensions security-testing cross-site-scripting burpsuite-extender penetration-testing-tools trusted-types

Updated Sep 28, 2021
Java

fxrhan / all-XSS-Payloads

This is a list contains 7000+ Cross Site Scripting Payloads.

xss xss-vulnerability payload web-penetration-testing cross-site-scripting hacking-tools

Updated Oct 31, 2021

siddharthshah3030 / choukidar-owasp-security-chrome-extension

quickly detects OWASP top 10 vulnerabilities in your current tab

chrome-extension injection owasp security-vulnerability vulnerability-detection security-scanner owasp-top-10 sensitive-data-exposure cross-site-scripting sih2019

Updated Apr 13, 2019
JavaScript

Improve this page

Add a description, image, and links to the cross-site-scripting topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the cross-site-scripting topic, visit your repo's landing page and select "manage topics."