-
Updated
May 24, 2020 - JavaScript
#
xss
Here are 76 public repositories matching this topic...
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
javascript
svg
html
security
dom
xss
mathml
sanitizer
dompurify
cross-site-scripting
prevent-xss-attacks
Awesome XSS stuff
-
Updated
Feb 26, 2020 - JavaScript
XSS'OR - Hack with JavaScript.
-
Updated
Feb 5, 2020 - JavaScript
A container repository for my public web hacks!
-
Updated
Sep 7, 2018 - JavaScript
Open
Documentation rework
-
Updated
May 4, 2020 - JavaScript
Proactively protect your Node.js web services
-
Updated
Sep 28, 2018 - JavaScript
koto
commented
Dec 13, 2019
Scripts created by the parser don't have their slot values filled, which formally would cause the default policy invocation in prepare script url and text - and might cause the rejection of the values at parsing time since [create an element for the token](https://html.spec.whatwg.org/#create-an-element-for-the
chron0x
commented
Apr 10, 2020
I am a bit unsure if my config is correct.
When I start bXSS I get: bXSS listening on port undefined
- Should I also comment out
config.github = {};if I don't want to use it? - Should I change
config.url = process.env.url || 'mydoamin.com';toconfig.url = 'mydoamin.com';? - Do the pahts for letsencrypt need ticks, such as `config.letsEncrypt.publicKey = '/etc/letsencrypt/li
Open
Add Docker support
-
Updated
Apr 10, 2019 - JavaScript
-
Updated
May 30, 2020 - JavaScript
The Serverless Blind XSS App
-
Updated
Oct 29, 2019 - JavaScript
Hooks in to interesting functions and helps reverse the web app faster.
-
Updated
Oct 2, 2019 - JavaScript
A web application for generating custom XSS payloads
-
Updated
Dec 29, 2019 - JavaScript
Foxss is a simple php based penetration Testing Tool.Currently it will help to find XSS vulnerability in websites.
-
Updated
Oct 31, 2018 - JavaScript
XSS Cheatsheet - A collection of XSS attack vectors https://xss.devwerks.net/
-
Updated
Oct 10, 2019 - JavaScript
Collection of XSS Payloads from various sources
-
Updated
May 8, 2017 - JavaScript
XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!
-
Updated
Aug 26, 2018 - JavaScript
Makes it possible to use DOMPurify on server and client in the same way.
-
Updated
Apr 3, 2020 - JavaScript
Examples of security features (or mishaps) on web applications -- these are mostly examples and tutorials from the WASEC book.
-
Updated
Apr 24, 2020 - JavaScript
Purify your html content before marking it safe
-
Updated
Apr 30, 2020 - JavaScript
XSS mitigation for Polymer webcomponents that uses safe html type contracts
-
Updated
May 16, 2019 - JavaScript
对springSecurity进行二次开发,提供OAuth2授权(支持跨域名,多应用授权)、JWT、SSO、文件上传、权限系统无障碍接入、接口防刷、XSS、CSRF、SQL注入、三方登录(绑定,解绑)、加密通信等一系列安全场景的解决方案
-
Updated
May 5, 2020 - JavaScript
Security module for koa applications
-
Updated
Aug 29, 2018 - JavaScript
Improve this page
Add a description, image, and links to the xss topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the xss topic, visit your repo's landing page and select "manage topics."
It'd be good to rewrite all the documentation to use the most updated forms of tracy and provide a bit more context about how to use the tool.