Application Security for Xss
Application security tools and solutions for securing web applications, mobile apps, and software throughout the development lifecycle. Task: Xss
Browse 27 security tools
FEATURED
USE CASES
DAST scanner for web apps & APIs with automated vuln detection & remediation
DAST tool for scanning web apps and APIs for OWASP Top 10 vulnerabilities
DAST tool for detecting web app vulnerabilities like SQL injection and XSS
DAST scanner for Single Page Applications using headless browser technology
DAST tool for scanning web apps, microservices, and APIs for vulnerabilities
Node.js Goof is a vulnerable Node.js demo application containing multiple security vulnerabilities for testing and educational purposes.
A tool to find XSS vulnerabilities in web applications
A Burp Suite plugin for automatically adding XSS and SQL payload to fuzz
A Burp Suite plugin that extracts keywords from HTTP responses using regex patterns and tests for reflected XSS vulnerabilities within the target scope.
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
Femida is a Python automation tool that integrates with Burp Suite to detect blind XSS vulnerabilities in web applications through HTTP request analysis.
DOMdig is a DOM XSS scanner that uses static analysis, dynamic analysis, and fuzz testing to detect and exploit Cross-Site Scripting vulnerabilities in Single Page Applications.
A fast and simple DOM based XSS vulnerability scanner
A web security tool that scans for vulnerabilities and known attacks.
Web-application vulnerability scanner with extensive coverage of security testing modules.
A Java based HTTP/HTTPS proxy for assessing web application vulnerability with various useful features.
A collection of vulnerable web application test cases designed to benchmark and evaluate the effectiveness of static security analyzers and penetration testing tools.
A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training.
A Fastify plugin that implements HTTP security headers through a wrapper around the helmet library to protect web applications from common vulnerabilities.
Curiefense is an application security platform that extends Envoy proxy to protect web applications and APIs against SQL injection, XSS, DDoS, and other common threats.
DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.