Trending repositories for topic xss
serve as a reverse proxy to protect your web services from attacks and exploits.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
A big list of Android Hackerone disclosed reports and other resources.
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
A fast DOM based XSS vulnerability scanner with simplicity.
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)
Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
A list of resources for those interested in getting started in bug bounties
libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)
Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
A big list of Android Hackerone disclosed reports and other resources.
Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
serve as a reverse proxy to protect your web services from attacks and exploits.
A fast DOM based XSS vulnerability scanner with simplicity.
An XSS exploitation command-line interface and payload generator.
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
A list of resources for those interested in getting started in bug bounties
serve as a reverse proxy to protect your web services from attacks and exploits.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
A big list of Android Hackerone disclosed reports and other resources.
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
A fast DOM based XSS vulnerability scanner with simplicity.
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)
Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
A list of resources for those interested in getting started in bug bounties
libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)
Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
A big list of Android Hackerone disclosed reports and other resources.
Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
serve as a reverse proxy to protect your web services from attacks and exploits.
A fast DOM based XSS vulnerability scanner with simplicity.
An XSS exploitation command-line interface and payload generator.
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
A list of resources for those interested in getting started in bug bounties
serve as a reverse proxy to protect your web services from attacks and exploits.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
A list of resources for those interested in getting started in bug bounties
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Source code for Hacker101.com - a free online web and mobile security class.
A big list of Android Hackerone disclosed reports and other resources.
bluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS
Burp Suite Certified Practitioner Exam Study
lamp-cloud 支持jdk21、jdk17、jdk11、jdk8,ta基于 SpringCloud + SpringBoot 开发的微服务中后台快速开发平台,专注于多租户(SaaS架构)解决方案,亦可作为普通项目(非SaaS架构)的基础开发框架使用,目前已实现插拔式数据库隔离、SCHEMA隔离、字段隔离 等租户隔离方案。
Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
Google Dork List - Uncover the Hidden Gems of the Internet ( There are at least 320+ categories )
XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.
INE/eLearnSecurity Web Application Penetration Tester (eWPTv2) Notes
🚀 XSSFUZZ - A tool for detecting XSS vulnerabilities in web applications.
Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML conte...
[V5] This will help you setup a grabber with the following features: History, Passwords, Tokens, Cookies, Emails, IP Adresses, Roblox Login Information, Windows Keys, Computer Information.
Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
Google Dork List - Uncover the Hidden Gems of the Internet ( There are at least 320+ categories )
libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
serve as a reverse proxy to protect your web services from attacks and exploits.
🔥 Repo related to my FrontendMasters course. An Advanced Web Dev Quiz that covers a wide range of the things web devs get to deal with on a daily basis.
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
🚀 XSSFUZZ - A tool for detecting XSS vulnerabilities in web applications.
A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API
INE/eLearnSecurity Web Application Penetration Tester (eWPTv2) Notes
serve as a reverse proxy to protect your web services from attacks and exploits.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
A list of resources for those interested in getting started in bug bounties
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Source code for Hacker101.com - a free online web and mobile security class.
Google Dork List - Uncover the Hidden Gems of the Internet ( There are at least 320+ categories )
bluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS
lamp-cloud 支持jdk21、jdk17、jdk11、jdk8,ta基于 SpringCloud + SpringBoot 开发的微服务中后台快速开发平台,专注于多租户(SaaS架构)解决方案,亦可作为普通项目(非SaaS架构)的基础开发框架使用,目前已实现插拔式数据库隔离、SCHEMA隔离、字段隔离 等租户隔离方案。
🛡 Automatically configure your app to follow OWASP security patterns and principles by using HTTP Headers and Middleware
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
Burp Suite Certified Practitioner Exam Study
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
Google Dork List - Uncover the Hidden Gems of the Internet ( There are at least 320+ categories )
A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API
Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML conte...
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security
functions to exploit common web application vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Server-Side Request Forgery (SSRF), and Path Traversal.
[V5] This will help you setup a grabber with the following features: History, Passwords, Tokens, Cookies, Emails, IP Adresses, Roblox Login Information, Windows Keys, Computer Information.
serve as a reverse proxy to protect your web services from attacks and exploits.
🔥 Repo related to my FrontendMasters course. An Advanced Web Dev Quiz that covers a wide range of the things web devs get to deal with on a daily basis.
List of every possible vulnerabilities in computer security.
Diccionarios de: usuarios, passwords, XSS, Dorks, etc .. ( hackingyseguridad.com )
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.