Hacker101Source code for Hacker101.com - a free online web and mobile security class.
Stars: ✭ 12,246 (+64352.63%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+1447.37%)
Secbox🖤 网络安全与渗透测试工具导航
Stars: ✭ 222 (+1068.42%)
Python Xss FilterBased on native Python module HTMLParser purifier of HTML, To Clear all javascript in html
Stars: ✭ 115 (+505.26%)
solutions-bwappIn progress rough solutions to bWAPP / bee-box
Stars: ✭ 158 (+731.58%)
GodnslogAn exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
Stars: ✭ 172 (+805.26%)
safe-svgSimple and lightweight library that helps to validate SVG files in security manners.
Stars: ✭ 25 (+31.58%)
XssmapXSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
Stars: ✭ 134 (+605.26%)
cdCloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
Stars: ✭ 33 (+73.68%)
PayloadsGit All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+14963.16%)
XsscopeXSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
Stars: ✭ 103 (+442.11%)
security-cheat-sheetMinimalist cheat sheet for developpers to write secure code
Stars: ✭ 47 (+147.37%)
Angularjs Csti ScannerAutomated client-side template injection (sandbox escape/bypass) detection for AngularJS.
Stars: ✭ 214 (+1026.32%)
ngx http html sanitize moduleIt's a nginx http module to sanitize HTML5 with whitelisted elements, whitelisted attributes and whitelisted CSS property
Stars: ✭ 14 (-26.32%)
Webrtcxss利用XSS入侵内网(Use XSS automation Invade intranet)
Stars: ✭ 190 (+900%)
SuperXSSMake XSS Great Again
Stars: ✭ 57 (+200%)
Xssor2XSS'OR - Hack with JavaScript.
Stars: ✭ 1,969 (+10263.16%)
Foxss-XSS-Penetration-Testing-ToolFoxss is a simple php based penetration Testing Tool.Currently it will help to find XSS vulnerability in websites.
Stars: ✭ 35 (+84.21%)
Bluemondaybluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS
Stars: ✭ 2,135 (+11136.84%)
0l4bsCross-site scripting labs for web application security enthusiasts
Stars: ✭ 119 (+526.32%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (+500%)
cve-2016-1764Extraction of iMessage Data via XSS
Stars: ✭ 52 (+173.68%)
AryAry 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。
Stars: ✭ 241 (+1168.42%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+7200%)
hackableA python flask app that is purposefully vulnerable to SQL injection and XSS attacks. To be used for demonstrating attacks
Stars: ✭ 61 (+221.05%)
Veneno Stars: ✭ 230 (+1110.53%)
diwaA Deliberately Insecure Web Application
Stars: ✭ 32 (+68.42%)
Xss LoaderXss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
Stars: ✭ 215 (+1031.58%)
xss-http-injectorXSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.
Stars: ✭ 22 (+15.79%)
BerserkerA list of useful payloads for Web Application Security and Pentest/CTF
Stars: ✭ 212 (+1015.79%)
safe-markedMarkdown to HTML using marked and DOMPurify. Safe by default.
Stars: ✭ 31 (+63.16%)
XlessThe Serverless Blind XSS App
Stars: ✭ 191 (+905.26%)
xssfinderToolset for detecting reflected xss in websites
Stars: ✭ 105 (+452.63%)
JavasecurityJava web and command line applications demonstrating various security topics
Stars: ✭ 182 (+857.89%)
NachtWalReinforced Mitigation Security Filter
Stars: ✭ 17 (-10.53%)
JsshellJSshell - JavaScript reverse/remote shell
Stars: ✭ 167 (+778.95%)
flask-vulnPretty vulnerable flask app..
Stars: ✭ 23 (+21.05%)
WascanWAScan - Web Application Scanner
Stars: ✭ 1,895 (+9873.68%)
PastebinMarkdownXSSXSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (+342.11%)
Xss Payload List🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Stars: ✭ 2,617 (+13673.68%)
laravel-xss-filterFilter user input for XSS but don't touch other html
Stars: ✭ 38 (+100%)
PhpvulnAudit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (+668.42%)
html-sanitizerHTML sanitizer, written in PHP, aiming to provide XSS-safe markup based on explicitly allowed tags, attributes and values.
Stars: ✭ 18 (-5.26%)
HookishHooks in to interesting functions and helps reverse the web app faster.
Stars: ✭ 129 (+578.95%)
Wordlist404Small but effective wordlist for brute-forcing and discovering hidden things.
Stars: ✭ 101 (+431.58%)
QuickxssAutomating XSS using Bash
Stars: ✭ 113 (+494.74%)
security-wrapper对springSecurity进行二次开发,提供OAuth2授权(支持跨域名,多应用授权)、JWT、SSO、文件上传、权限系统无障碍接入、接口防刷、XSS、CSRF、SQL注入、三方登录(绑定,解绑)、加密通信等一系列安全场景的解决方案
Stars: ✭ 21 (+10.53%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (+505.26%)
Parsevip解析VIP资源,解析出酷狗、QQ音乐、腾讯视频、人人视频的真实地址
Stars: ✭ 105 (+452.63%)
XsshellAn XSS reverse shell framework
Stars: ✭ 251 (+1221.05%)
EagleMultithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
Stars: ✭ 85 (+347.37%)
APSoft-Web-Scanner-v2Powerful dork searcher and vulnerability scanner for windows platform
Stars: ✭ 96 (+405.26%)
sanitizer-polyfillrewrite constructor arguments, call DOMPurify, profit
Stars: ✭ 46 (+142.11%)