prevent XSS attacks by sanitizing html (this is different then esacping!)
a small script to prevent stored XSS attacks and detect script tags in SVGs
ProceXSS is an Asp.NET Http module -tries- to prevent to xss attacks.
Website for testing and preventing different attacks like XSS, SQL Injection & Spoofing for Nasscom (ISAA) Project.
A modern oembed client. Allows you to register filters to improve or supply oembed support for sites that don't normally have it. You can also supply a whitelist of services you trust to prevent XSS a...
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
翻译 - DOMPurify-用于HTML,MathML和SVG的纯DOM,超快速,超级耐XSS消毒剂。 DOMPurify具有安全默认值,但提供了许多可配置性和挂钩。演示:
Express 4.x middleware which sanitizes user input data (in req.body, req.query, req.headers and req.params) to prevent Cross Site Scripting (XSS) attack.
This is a simple script written in php to prevent SQLi Attacks (SQL Injection) and XSS Vulnerabilities
This script is designed to display a warning message to prevent Self XSS Attacks.
Cleans HTML to avoid XSS attacks
Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
翻译 - 使用白名单指定的配置对不受信任的HTML进行清理(以防止XSS)
A repository of JavaScript XSS attacks against client browsers
A java HttpServletRequestWrapper to guard against sql injection and xss attacks
A python flask app that is purposefully vulnerable to SQL injection and XSS attacks. To be used for demonstrating attacks
Example code for tutorial: https://academind.com/learn/javascript/xss-cross-site-scripting-attacks/
An attempt to detect and prevent DDoS attacks using reinforcement learning. The simulation was done using Mininet.
Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
Faster xss scanner,support reflected-xss and dom-xss
XSS spider - 66/66 wavsep XSS detected
翻译 - XSS spider - 66/66 wavsep XSS detected
Universal and Transferable Attacks on Aligned Language Models
Awesome XSS stuff
翻译 - 很棒的XSS东西
一款用于探测并利用XSS漏洞的Python脚本
prevent cc attack
Black prevent without Root
Secure XSS Filters.