DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
翻译 - DOMPurify-用于HTML,MathML和SVG的纯DOM,超快速,超级耐XSS消毒剂。 DOMPurify具有安全默认值,但提供了许多可配置性和挂钩。演示:
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
翻译 - 🎯跨站点脚本(XSS)漏洞有效负载列表
#安全#w3af: web application attack and audit framework, the open source web vulnerability scanner.
翻译 - w3af:Web应用程序攻击和审核框架,开源Web漏洞扫描程序。
An XSS exploitation command-line interface and payload generator.
Build Content-Security-Policy headers from a JSON file (or build them programmatically)
bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
#安全#Tips on how to write exploit scripts (faster!)
Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.
#安全#Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that m...
Helios: Automated XSS Testing
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
Toolset for detecting reflected xss in websites
#安全#Audit tool to find common vulnerabilities in PHP source code
翻译 - 审核工具,以查找PHP源代码中的常见漏洞
#自然语言处理#NLP model and tech for cyber security tasks
XsSCan | Web Application XSS Scanner | Coded By Sir.4m1R [Mr.Hidden]
xss vulnerability scanner and input fuzzing tool.
XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for automating XSS attacks and validating XSS endpoint