🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
翻译 - 🎯跨站点脚本(XSS)漏洞有效负载列表
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
翻译 - ezXSS是渗透测试人员和漏洞赏金猎人测试(盲目)跨站点脚本的一种简便方法。
An XSS exploitation command-line interface and payload generator.
Wordpress Attack Suite
JSshell - JavaScript reverse/remote shell
OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
翻译 - 一个用 GO 编写的扫描器/漏洞利用工具,它通过利用已知的小工具来利用 Prototype Pollution to XSS。
From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
#夺旗赛 (CTF) 和网络安全资源#Cross-site scripting labs for web application security enthusiasts
翻译 - Web应用程序安全爱好者的跨站点脚本实验室
An XSS reverse shell framework
翻译 - XSS反向Shell框架
XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
Session Hijacking Visual Exploitation
Collection of XSS Payloads for fun and profit
A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
#网络爬虫#Collect XSS vulnerable parameters from entire domain.
OWASP PTK - application security browser extension.
XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
