Bluemondaybluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS
Stars: ✭ 2,135 (+11761.11%)
filter⏳ Provide filtering, sanitizing, and conversion of Golang data. 提供对Golang数据的过滤,净化,转换。
Stars: ✭ 53 (+194.44%)
JavasecurityJava web and command line applications demonstrating various security topics
Stars: ✭ 182 (+911.11%)
XssmapXSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
Stars: ✭ 134 (+644.44%)
BerserkerA list of useful payloads for Web Application Security and Pentest/CTF
Stars: ✭ 212 (+1077.78%)
SanitizeRuby HTML and CSS sanitizer.
Stars: ✭ 1,940 (+10677.78%)
WascanWAScan - Web Application Scanner
Stars: ✭ 1,895 (+10427.78%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+1533.33%)
XsshellAn XSS reverse shell framework
Stars: ✭ 251 (+1294.44%)
Python Xss FilterBased on native Python module HTMLParser purifier of HTML, To Clear all javascript in html
Stars: ✭ 115 (+538.89%)
XsscopeXSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
Stars: ✭ 103 (+472.22%)
Xss LoaderXss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
Stars: ✭ 215 (+1094.44%)
pathvalidateA Python library to sanitize/validate a string such as filenames/file-paths/etc.
Stars: ✭ 139 (+672.22%)
XlessThe Serverless Blind XSS App
Stars: ✭ 191 (+961.11%)
SuperXSSMake XSS Great Again
Stars: ✭ 57 (+216.67%)
JsshellJSshell - JavaScript reverse/remote shell
Stars: ✭ 167 (+827.78%)
Govalidator[Go] Package of validators and sanitizers for strings, numerics, slices and structs
Stars: ✭ 5,163 (+28583.33%)
Xss Payload List🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Stars: ✭ 2,617 (+14438.89%)
security-cheat-sheetMinimalist cheat sheet for developpers to write secure code
Stars: ✭ 47 (+161.11%)
0l4bsCross-site scripting labs for web application security enthusiasts
Stars: ✭ 119 (+561.11%)
Guten-gutterStrips boilerplate from Project Gutenberg text files
Stars: ✭ 16 (-11.11%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (+533.33%)
AryAry 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。
Stars: ✭ 241 (+1238.89%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (+7477.78%)
Secbox🖤 网络安全与渗透测试工具导航
Stars: ✭ 222 (+1133.33%)
Angularjs Csti ScannerAutomated client-side template injection (sandbox escape/bypass) detection for AngularJS.
Stars: ✭ 214 (+1088.89%)
xssfinderToolset for detecting reflected xss in websites
Stars: ✭ 105 (+483.33%)
cve-2016-1764Extraction of iMessage Data via XSS
Stars: ✭ 52 (+188.89%)
Webrtcxss利用XSS入侵内网(Use XSS automation Invade intranet)
Stars: ✭ 190 (+955.56%)
hackableA python flask app that is purposefully vulnerable to SQL injection and XSS attacks. To be used for demonstrating attacks
Stars: ✭ 61 (+238.89%)
GodnslogAn exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
Stars: ✭ 172 (+855.56%)
XsstrikeMost advanced XSS scanner.
Stars: ✭ 9,822 (+54466.67%)
Xssor2XSS'OR - Hack with JavaScript.
Stars: ✭ 1,969 (+10838.89%)
flask-vulnPretty vulnerable flask app..
Stars: ✭ 23 (+27.78%)
Hacker101Source code for Hacker101.com - a free online web and mobile security class.
Stars: ✭ 12,246 (+67933.33%)
PhpvulnAudit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (+711.11%)
HookishHooks in to interesting functions and helps reverse the web app faster.
Stars: ✭ 129 (+616.67%)
fefeValidate, sanitize and transform values with proper TypeScript types and zero dependencies.
Stars: ✭ 34 (+88.89%)
QuickxssAutomating XSS using Bash
Stars: ✭ 113 (+527.78%)
laravel-xss-filterFilter user input for XSS but don't touch other html
Stars: ✭ 38 (+111.11%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (+538.89%)
rulr📐 Validation and unit conversion errors in TypeScript at compile-time. Started in 2016.
Stars: ✭ 43 (+138.89%)
Parsevip解析VIP资源,解析出酷狗、QQ音乐、腾讯视频、人人视频的真实地址
Stars: ✭ 105 (+483.33%)
xss-http-injectorXSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.
Stars: ✭ 22 (+22.22%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+7605.56%)
Zebra formA jQuery augmented PHP library for creating secure HTML forms, and validating them easily
Stars: ✭ 95 (+427.78%)
Wordlist404Small but effective wordlist for brute-forcing and discovering hidden things.
Stars: ✭ 101 (+461.11%)
PayloadsGit All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+15800%)
sanitizer-polyfillrewrite constructor arguments, call DOMPurify, profit
Stars: ✭ 46 (+155.56%)
solutions-bwappIn progress rough solutions to bWAPP / bee-box
Stars: ✭ 158 (+777.78%)
cdCloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
Stars: ✭ 33 (+83.33%)
Veneno Stars: ✭ 230 (+1177.78%)