#

xss

Here are 76 public repositories matching this topic...

cure53 / DOMPurify

Star

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

javascript svg html security dom xss mathml sanitizer dompurify cross-site-scripting prevent-xss-attacks

Updated May 24, 2020
JavaScript

s0md3v / AwesomeXSS

Star

Awesome XSS stuff

alert xss xss-detection payload xss-payloads payload-list javascript-context xss-cheatsheet

Updated Feb 26, 2020
JavaScript

evilcos / xssor2

Star

XSS'OR - Hack with JavaScript.

encoding hack xss probe csrf pentest hacking-tool pentest-tool

Updated Feb 5, 2020
JavaScript

0xSobky / HackVault

Star

A container repository for my public web hacks!

tracking exploit regex xss fuzzing web-security pentesting payloads reconnaissance web-hacks

Updated Sep 7, 2018
JavaScript

nccgroup / tracy

Star

Open

Documentation rework

jacobheath commented Feb 10, 2020

It'd be good to rewrite all the documentation to use the most updated forms of tracy and provide a bit more context about how to use the tool.

Read more

cagataycali / xss-listener

Star

🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.

xss security-hardening xss-attacks security-tools xss-harvest xss-harvester

Updated May 4, 2020
JavaScript

RisingStack / protect

Star

Proactively protect your Node.js web services

nodejs security express xss sql-injection

Updated Sep 28, 2018
JavaScript

w3c / webappsec-trusted-types

Star

Open

Set slot values when called directly by the parser

1

koto commented Dec 13, 2019

Scripts created by the parser don't have their slot values filled, which formally would cause the default policy invocation in prepare script url and text - and might cause the rejection of the values at parsing time since [create an element for the token](https://html.spec.whatwg.org/#create-an-element-for-the

Read more

spec

LewisArdern / bXSS

Star

Open

bXSS listening on port undefined

3

chron0x commented Apr 10, 2020

I am a bit unsure if my config is correct.
When I start bXSS I get: bXSS listening on port undefined

Should I also comment out config.github = {}; if I don't want to use it?
Should I change config.url = process.env.url || 'mydoamin.com'; to config.url = 'mydoamin.com';?
Do the pahts for letsencrypt need ticks, such as `config.letsEncrypt.publicKey = '/etc/letsencrypt/li

Read more

Open

Add Docker support

AntSwordProject / ant

Star

实时上线的 XSS 盲打平台

xss xss-platform

Updated Oct 29, 2019
JavaScript

zhuyingda / veneno

Star

security xss web-security

Updated Apr 10, 2019
JavaScript

mike-works / web-security-fundamentals

Star

👨‍🏫 Mike's Web Security Course

cors security course xss csrf web-security clickjacking

Updated May 30, 2020
JavaScript

cn-panda / JavaCodeAudit

Star

Getting started with java code auditing 代码审计入门的小项目

java sql code xss jackson rce fastjson ssrf weblogic vulnerability-analysis

Updated Feb 6, 2020
JavaScript

mazen160 / xless

Star

The Serverless Blind XSS App

serverless xss exfiltration blind-xss out-of-band browser-exploitation

Updated Oct 29, 2019
JavaScript

skepticfx / hookish

Star

Hooks in to interesting functions and helps reverse the web app faster.

javascript hooks xss pentest

Updated Oct 2, 2019
JavaScript

rastating / xss-chef

Star

A web application for generating custom XSS payloads

react javascript security xss penetration-testing xss-exploitation websec xss-exploit

Updated Dec 29, 2019
JavaScript

moloch-- / cve-2016-1764

Star

Extraction of iMessage Data via XSS

security exploit xss vulnerability imessage cve

Updated Apr 8, 2016
JavaScript

jamiebuilds / guarded-string

Star

Prevent accidentally introducing XSS holes with the strings in your app

string xss secure safe guarded

Updated Feb 5, 2018
JavaScript

mcibique / express-security

Star

nodejs + express security and performance boilerplate.

Updated Apr 29, 2020
JavaScript

akalankauk / Foxss-XSS-Penetration-Testing-Tool

Star

Foxss is a simple php based penetration Testing Tool.Currently it will help to find XSS vulnerability in websites.

php xss testing-tools penetration xss-exploitation xss-detection hacking-tool xss-injection foxss

Updated Oct 31, 2018
JavaScript

devwerks / XSS-Cheatsheet

Star

XSS Cheatsheet - A collection of XSS attack vectors https://xss.devwerks.net/

security html5 xss vulnerability xss-vulnerability

Updated Oct 10, 2019
JavaScript

techgaun / xss-payloads

Star

Collection of XSS Payloads from various sources

security-audit paper hacking xss

Updated May 8, 2017
JavaScript

0xSobky / XSSBuster

Star

XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!

xss web-security dom-xss xss-filter injection-attacks

Updated Aug 26, 2018
JavaScript

kkomelin / isomorphic-dompurify

Star

Makes it possible to use DOMPurify on server and client in the same way.

wrapper isomorphic universal ssr xss xss-filter dompurify

Updated Apr 3, 2020
JavaScript

odino / wasec

Star

Examples of security features (or mishaps) on web applications -- these are mostly examples and tutorials from the WASEC book.

security csp book xss clickjacking websecurity wasec

Updated Apr 24, 2020
JavaScript

sivakumar-kailasam / ember-purify

Star

Purify your html content before marking it safe

ember sanitization security xss dompurify

Updated Apr 30, 2020
JavaScript

syntax-tree / hast-util-sanitize

Star

utility to sanitize hast nodes

html security xss clean syntax-tree util unist hast sanitize hast-util

Updated Mar 1, 2020
JavaScript

Polymer / polymer-resin

Star

XSS mitigation for Polymer webcomponents that uses safe html type contracts

security polymer webcomponents xss

Updated May 16, 2019
JavaScript

momokanni / security-wrapper

Star

对springSecurity进行二次开发，提供OAuth2授权(支持跨域名，多应用授权)、JWT、SSO、文件上传、权限系统无障碍接入、接口防刷、XSS、CSRF、SQL注入、三方登录(绑定，解绑)、加密通信等一系列安全场景的解决方案

xss authorization sso csrf springsecurity

Updated May 5, 2020
JavaScript

may215 / koa-protect

Star

Security module for koa applications

nodejs security koa xss sql-injection

Updated Aug 29, 2018
JavaScript

Improve this page

Add a description, image, and links to the xss topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the xss topic, visit your repo's landing page and select "manage topics."

You can’t perform that action at this time.