Statistics for topic xss

serve as a reverse proxy to protect your web services from attacks and exploits.

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

A big list of Android Hackerone disclosed reports and other resources.

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

Most advanced XSS scanner.

libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)

Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI

A big list of Android Hackerone disclosed reports and other resources.

Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security

A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.

serve as a reverse proxy to protect your web services from attacks and exploits.

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

A big list of Android Hackerone disclosed reports and other resources.

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

Most advanced XSS scanner.

libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)

Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI

A big list of Android Hackerone disclosed reports and other resources.

Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security

A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.

serve as a reverse proxy to protect your web services from attacks and exploits.

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

Most advanced XSS scanner.

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.

INE/eLearnSecurity Web Application Penetration Tester (eWPTv2) Notes

🚀 XSSFUZZ - A tool for detecting XSS vulnerabilities in web applications.

Automation tool to testing and confirm the xss vulnerability.

Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML conte...

Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist

A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.

Helios: Automated XSS Testing

Automation tool to testing and confirm the xss vulnerability.

🚀 XSSFUZZ - A tool for detecting XSS vulnerabilities in web applications.

serve as a reverse proxy to protect your web services from attacks and exploits.

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

A list of resources for those interested in getting started in bug bounties

Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist

Google Dork List - Uncover the Hidden Gems of the Internet ( There are at least 320+ categories )

Social Engineering Browser Update Attack.

ChatGPT加持的，多人在线协同信息安全报告编写平台。目前支持的报告类型：渗透测试报告，APP隐私合规报告。

A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API