xss-vulnerability

There are 18 repositories under xss-vulnerability topic.

payloadbox / xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
bugbounty cross-site-scripting dom-based payload payloads reflected-xss-vulnerabilities self-xss websecurity website-vulnerability xss xss-attacks xss-detection xss-exploitation xss-injection xss-payload xss-payloads xss-poc xss-scanner xss-scanners xss-vulnerability
7684
ssl / ezXSS
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
payload xss blind php test xss-vulnerability xss-exploitation xss-detection xss-attacks xss-injection xss-scanner blind-xss easy-to-use easy bug bugbounty penetration-testing alert redteam redteaming
Language:PHP 2181
toxssin
t3l3machus / toxssin
An XSS exploitation command-line interface and payload generator.
cross-site-scripting exploitation javascript penetration-testing pentesting-tools python web-penetration-testing xss-exploitation xss-vulnerability hacking xss
Language:Python 1399
magicRecon
robotshell / magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
subdomain bug bugbounty-tool bugbounty vulnerability-scanners scanner tool infosec bugbountytricks bash-script subdomains-enumeration xss-vulnerability sql-injection nuclei
Language:Shell 1017
pwn0sec / PwnXSS
PwnXSS: Vulnerability (XSS) scanner exploit
xss-scanner xss-vulnerability
Language:Python 805
TheKingOfDuck / easyXssPayload
XssPayload List . Usage:
xss xsspayload xss-poc xss-vulnerability xss-injection
Language:Python 731
abhisharma404 / vault
swiss army knife for hackers
crawler fuzzing hacking hacking-tool information-gathering lfi networking offensive-security osint pentesting port-scanner python rfi scanner scrapy security sqlite ssl-inspection vault xss-vulnerability
Language:Python 535
kleiton0x00 / ppmap
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
prototype-pollution bugbounty cybersecurity bug-bounty bugbounty-tool xss xss-vulnerability infosec xss-exploitation xss-detection
Language:Go 514
tangxiaofeng7 / SecExample
JAVA 漏洞靶场 (Vulnerability Environment For Java)
docker java springboot xss-vulnerability vulnerability ssrf rce fastjson cors sqlinjection csrf
Language:HTML 474
swisskyrepo / DamnWebScanner
Another web vulnerabilities scanner, this extension works on Chrome and Opera
sql-injection polyglot-vector web-vulnerabilities-scanner plugin extension webbrowser xss-vulnerability rce lfi scans
Language:Python 462
OWASP / Vulnerable-Web-Application
OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber
vulnerable-web-app web php sql-injection xss-vulnerability command-execution file-upload directory-traversal xss sql
Language:PHP 396
theinfosecguy / QuickXSS
Automating XSS using Bash
bash-script bugbounty hacktoberfest hacktoberfest2021 xss xss-detection xss-vulnerability
Language:Shell 357
pikpikcu / XRCross
XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities
bugbounty bugbounty-tool xss-vulnerability ssrf xss-scanner subdomain-enumeration takeover-subdomain rce sqli cors lfi recon scanners check-subdomains cors-scanner
Language:Shell 344
tegal1337 / 0l4bs
Cross-site scripting labs for web application security enthusiasts
bugbounty labs xss xss-exploitation xss-vulnerability
Language:PHP 321
dotboris / vuejs-serverside-template-xss
Demo of a Vue.js app that mixes both clientside templates and serverside templates leading to an XSS vulnerability
xss xss-vulnerability vuejs2 vue vuejs vue2 security
Language:PHP 302
iamunixtz / LazyXss
Automation tool to testing and confirm the xss vulnerability.
lazyxss lazyxsstool xss xss-detection xss-payloads xss-scanner xss-vulnerability xsslazytool
Language:Python 291
Jewel591 / xssmap
XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
python3 xss xss-vulnerability xss-exploitation xss-detection xss-attacks xss-scanner pentesting penetration-testing sqlmap
Language:Python 268
domxssscanner
yaph / domxssscanner
DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities
dom domxss online-tool scanner web-security xss-vulnerability
Language:HTML 194
R0X4R / D4rkXSS
A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
bugbounty ethical-hacking xss-vulnerability xss-exploitation xss-filter hacking javascript bughunter bughunting
168
thenurhabib / collector
Collect XSS vulnerable parameters from entire domain.
wayback-machine waybackurls xss xss-vulnerability xss-exploitation xss-detection hacking-tool tools url crawler vulnerability-scanner
Language:Python 153
blackhatethicalhacking / XSSRocket
XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.
bugbounty cybersecurity hacking infosec offensive penetration-testing pentesting xss xss-attacks xss-detection xss-exploitation xss-scanner xss-vulnerability
Language:Shell 147
MariaGarber / XSS-Scanner
XSS scanner that detects Cross-Site Scripting vulnerabilities in website by injecting malicious scripts
xss scanner xss-vulnerability puppeteer javascript injection
Language:JavaScript 124
moeinfatehi / xss_vulnerability_challenges
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
application-security appsecurity infosec penetration-testing pentesting xss xss-attacks xss-detection xss-exploitation xss-filter xss-vulnerability cross-site-scripting input-validation owasp owasp-top-10 owasp-top-ten
Language:PHP 117
hahwul / XSS-Payload-without-Anything
XSS Payload without Anything.
awesome bugbounty bypass-xss hacking hahwul payloads security xss xss-vulnerability
107
The404Hacking / XsSCan
XsSCan | Web Application XSS Scanner | Coded By Sir.4m1R [Mr.Hidden]
the404hacking xssscan xss scan scanner security security-scanner xss-vulnerability subdomain hacking python cross-site-scripting
Language:Python 86
R0X4R / Pinaak
A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan
bash-script bugbounty fastscanner find-vulnerabilities nuclei sqlinjection vulnerabilities vulnerability-scanners xss-vulnerability
Language:Shell 79
yangr0 / RVuln
[ Automated Web Vulnerability Scanner ]
hacking hacking-tool rust rust-lang security security-tools vulnerabilities vulnerability-scanners vulnerability-scanning web web-scanner xss xss-vulnerability
Language:Rust 74
Err0r-ICA / SCANter
Websites Vulnerability Scanner
rce rce-exploit rce-scanner scanner server-side-template-injection sql-injection sql-scanner sqli ssti ssti-payloads xss xss-attacks xss-detection xss-exploitation xss-scanner xss-vulnerability
Language:Python 73
AXDOOMER / easy-xss-cookie-stealer
XSS cookie stealer using JavaScript and PHP
xss xss-vulnerability xss-exploitation xss-attacks
Language:HTML 68
MrPr0fessor / Google-Dorks-for-Cross-site-Scripting-XSS
Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML content. Widespread due to input validation lapses.
cross-site-scripting cyber cyber-security ethical-hacking-tools google-dorks penetration-testing-tools vulnerability-assessment vulnerability-detection vulnerability-scanners web-application-security web-penetration-testing xss xss-payload xss-payloads xss-vulnerability find-xss
61
Charmve / PyStegosploit
PoC - Exploit Delivery via Steganography and Polyglots, CVE-2014-0282
exploits steganography decoder jpg-html-polyglot jpg jpeg cve html-png-polyglot encoded-images browser-exploits stego xss-vulnerability poc exp charmve
Language:HTML 53
seanmarpo / webjars-swagger-xss
PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]
xss xss-poc xss-vulnerability
Language:Kotlin 53
x1337loser / bug-bounty-writeup
This repo contains different variants of Bug Bounty & Security & Pentest & Tech related Articles
bug-bounty bugbounty bugbountytips bugreport hacking idor-attack vulnerabilities vulnerability writeups xss-vulnerability
48
CrazyProger1 / Simple-XSS
Simple-XSS is a multiplatform cross-site scripting (XSS) vulnerability exploitation tool.
cli flet gui python web websockets xss xss-attacks xss-exploitation xss-vulnerability pentest pentesting jinja2 ngrok pydantic beef beef-analogue
Language:Python 47
n4itr0-07 / SecToolkit
Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a variety of resources, notes, and practical projects aimed at enhancing knowledge and skills in identifying and mitigating security vulnerabilities.
bugbounty bugbounty-writeups bugbountyroadmap commandinjection cryptography cybersecurity-education enumeration fuzzing idor netcat nmap owasp-top-10 penetration-testing python3 reconnaissance requestsmuggling sqlinjection xss-vulnerability
47
techguy-bhushan / XssRequestFilters
Light weight library for Filter the Cross-site scripting in request For Spring Framwork / Spring-Boot, logic can be use for servlet based(without using spring framework) application
spring-boot spring-mvc spring-rest xss xss-attacks xss-filter xss-scanners xss-vulnerability
Language:Java 46