cross-site-scripting

There are 119 repositories under cross-site-scripting topic.

cure53/DOMPurify
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
Language:JavaScript14.9k 154 614768
payloadbox/xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
6.9k 140 131.8k
andresriancho/w3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
Language:Python4.7k 193 18.7k1.2k
t3l3machus/toxssin
An XSS exploitation command-line interface and payload generator.
Language:Python1.3k 18 7191
paragonie/csp-builder
Build Content-Security-Policy headers from a JSON file (or build them programmatically)
Language:PHP543 25 4039
LewisArdern/bXSS
bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
Language:JavaScript529 13 2665
rizemon/exploit-writing-for-oswe
Tips on how to write exploit scripts (faster!)
468 5 0102
Sharpforce/XSS-Exploitation-Tool
An XSS Exploitation Tool
Language:PHP312 8 658
ethicalhackingplayground/bxss
Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.
Language:Go286 7 751
dragonked2/Egyscan
Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:
Language:Python254 3 1446
Stuub/Helios
Helios: Automated XSS Testing
Language:Python147 6 632
dipakpanchal05/CVE-2022-23808
phpMyAdmin XSS
116 3 021
Proviesec/xss-payload-list
xss-payload-list
Language:JavaScript116 3 031
moeinfatehi/xss_vulnerability_challenges
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
Language:PHP115 3 115
Damian89/xssfinder
Toolset for detecting reflected xss in websites
Language:Python112 6 636
jackaduma/NLP4CyberSecurity
NLP model and tech for cyber security tasks
Language:Jupyter Notebook87 2 227
The404Hacking/XsSCan
XsSCan | Web Application XSS Scanner | Coded By Sir.4m1R [Mr.Hidden]
Language:Python81 3 219
xadhrit/xira
xss vulnerability scanner and input fuzzing tool.
Language:Python61 4 522
Encryptor-Sec/XSSearch
XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for automating XSS attacks and validating XSS endpoint
Language:Python59 1 114
vladan-stojnic/ML-based-WAF
Simple machine learning based web application firewall (WAF) created in python
Language:Jupyter Notebook57 1 323
ivan-sincek/xss-catcher
Simple API for storing all incoming XSS requests and various XSS templates.
Language:HTML45 1 08
deep-security/aws-waf
Deep Security's APIs make it simple to integration with a variety of AWS Services
43 16 09
MrPr0fessor/Google-Dorks-for-Cross-site-Scripting-XSS
Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML content. Widespread due to input validation lapses.
37 2 03
hexrom/CookieHeist
PHP Cookie Stealing Scripts for use in XSS
Language:PHP27 3 012
Ak-wa/XSSRecon
XSSRecon - Reflected XSS Scanner
Language:Python23 3 08
J2TEAM/xss-me
A simple web application to learn about Cross-Site Scripting (XSS)
Language:PHP22 3 014
p4p1/xss_bomb
A cross site scripting command and control notification server
Language:JavaScript21 2 01
michaeluno/php-simple-web-scraper
A PHP application which runs on Heroku and dumps web site outputs including JavaScript generated contents.
Language:PHP20 2 419
dayeya/FinalWall
A Web application firewall to monitor, analyze and block traffic, built with Python
Language:Python19 1 11
humblelad/Awesome-XSS-Payloads
Exotic and uncommon XSS Vectors to hit the target as quickly as possible.
18 1 012
byt3n33dl3/Ronin
Ronin the Shogun for XSS and XSRF Attacks.
Language:C16 0 03
fmereani/Cross-Site-Scripting-XSS
This project contains datasets for Cross Site Scripting (XSS), SQL, and LDAP injections. The project also contains the Matlab code for creating SVM, K-NN, Random Forest, and Neural Networks classifiers to detect Web applications attacks.
Language:MATLAB16 1 00
shreyaschavhan/xss
All About XSS
14 2 03
ShubhamJagtap2000/Cross-site-Scripting
🐞 Understand how cross-site scripting occurs, how to detect and exploit XSS vulnerabilities, giving you control of other visitor's browsers.
Language:JavaScript13 1 11
OSTEsayed/OSTE-Vulnerable-Web-Application
Vulnerable Web application made with PHP/SQL designed to help new web testers gain some experience and test DAST tools for identifying web vulnerabilities. Containing some of the most well-known vulnerabilities such as SQL, cross-site scripting (XSS), OS command injections, our intention to expand more vulnerabilities for learning purposes.
Language:PHP12 1 010
xadhrit/xss-hacker
Cross Site Scripting Cheat sheet.
12 1 02

cross-site-scripting

cure53/DOMPurify

payloadbox/xss-payload-list

andresriancho/w3af

t3l3machus/toxssin

paragonie/csp-builder

LewisArdern/bXSS

rizemon/exploit-writing-for-oswe

Sharpforce/XSS-Exploitation-Tool

ethicalhackingplayground/bxss

dragonked2/Egyscan

Stuub/Helios

dipakpanchal05/CVE-2022-23808

Proviesec/xss-payload-list

moeinfatehi/xss_vulnerability_challenges

Damian89/xssfinder

jackaduma/NLP4CyberSecurity

The404Hacking/XsSCan

xadhrit/xira

Encryptor-Sec/XSSearch

vladan-stojnic/ML-based-WAF

ivan-sincek/xss-catcher

deep-security/aws-waf

MrPr0fessor/Google-Dorks-for-Cross-site-Scripting-XSS

hexrom/CookieHeist

Ak-wa/XSSRecon

J2TEAM/xss-me

p4p1/xss_bomb

michaeluno/php-simple-web-scraper

dayeya/FinalWall

humblelad/Awesome-XSS-Payloads

byt3n33dl3/Ronin

fmereani/Cross-Site-Scripting-XSS

shreyaschavhan/xss

ShubhamJagtap2000/Cross-site-Scripting

OSTEsayed/OSTE-Vulnerable-Web-Application

xadhrit/xss-hacker