APSoft-Web-Scanner-v2Powerful dork searcher and vulnerability scanner for windows platform
Stars: ✭ 96 (+284%)
XsstrikeMost advanced XSS scanner.
Stars: ✭ 9,822 (+39188%)
Xss Payload List🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Stars: ✭ 2,617 (+10368%)
AwesomexssAwesome XSS stuff
Stars: ✭ 3,664 (+14556%)
WascanWAScan - Web Application Scanner
Stars: ✭ 1,895 (+7480%)
XsshellAn XSS reverse shell framework
Stars: ✭ 251 (+904%)
PhpvulnAudit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (+484%)
QuickxssAutomating XSS using Bash
Stars: ✭ 113 (+352%)
flask-vulnPretty vulnerable flask app..
Stars: ✭ 23 (-8%)
Parsevip解析VIP资源,解析出酷狗、QQ音乐、腾讯视频、人人视频的真实地址
Stars: ✭ 105 (+320%)
JsshellJSshell - JavaScript reverse/remote shell
Stars: ✭ 167 (+568%)
Hacker101Source code for Hacker101.com - a free online web and mobile security class.
Stars: ✭ 12,246 (+48884%)
xssfinderToolset for detecting reflected xss in websites
Stars: ✭ 105 (+320%)
HookishHooks in to interesting functions and helps reverse the web app faster.
Stars: ✭ 129 (+416%)
AryAry 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。
Stars: ✭ 241 (+864%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (+360%)
hackableA python flask app that is purposefully vulnerable to SQL injection and XSS attacks. To be used for demonstrating attacks
Stars: ✭ 61 (+144%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+5448%)
Xss LoaderXss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
Stars: ✭ 215 (+760%)
Zebra formA jQuery augmented PHP library for creating secure HTML forms, and validating them easily
Stars: ✭ 95 (+280%)
BerserkerA list of useful payloads for Web Application Security and Pentest/CTF
Stars: ✭ 212 (+748%)
GodnslogAn exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
Stars: ✭ 172 (+588%)
cdCloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
Stars: ✭ 33 (+32%)
Xssor2XSS'OR - Hack with JavaScript.
Stars: ✭ 1,969 (+7776%)
solutions-bwappIn progress rough solutions to bWAPP / bee-box
Stars: ✭ 158 (+532%)
cve-2016-1764Extraction of iMessage Data via XSS
Stars: ✭ 52 (+108%)
Bluemondaybluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS
Stars: ✭ 2,135 (+8440%)
sanitizer-polyfillrewrite constructor arguments, call DOMPurify, profit
Stars: ✭ 46 (+84%)
XssmapXSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
Stars: ✭ 134 (+436%)
0l4bsCross-site scripting labs for web application security enthusiasts
Stars: ✭ 119 (+376%)
SuperXSSMake XSS Great Again
Stars: ✭ 57 (+128%)
Python Xss FilterBased on native Python module HTMLParser purifier of HTML, To Clear all javascript in html
Stars: ✭ 115 (+360%)
PayloadsGit All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+11348%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (+356%)
XsscopeXSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
Stars: ✭ 103 (+312%)
Secbox🖤 网络安全与渗透测试工具导航
Stars: ✭ 222 (+788%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (+5356%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+1076%)
Angularjs Csti ScannerAutomated client-side template injection (sandbox escape/bypass) detection for AngularJS.
Stars: ✭ 214 (+756%)
Pythempentest framework
Stars: ✭ 1,060 (+4140%)
SourcecodesnifferThe Source Code Sniffer is a poor man’s static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.
Stars: ✭ 87 (+248%)
SqlinatorAutomatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
Stars: ✭ 70 (+180%)
XwafxWAF 3.0 - Free Web Application Firewall, Open-Source.
Stars: ✭ 48 (+92%)
XlessThe Serverless Blind XSS App
Stars: ✭ 191 (+664%)
EzxssezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Stars: ✭ 1,022 (+3988%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+3796%)
Webrtcxss利用XSS入侵内网(Use XSS automation Invade intranet)
Stars: ✭ 190 (+660%)
html-sanitizerHTML sanitizer, written in PHP, aiming to provide XSS-safe markup based on explicitly allowed tags, attributes and values.
Stars: ✭ 18 (-28%)