Application Security and Xss Tools & Resources

Security Audit

Devsecops

Security Testing

XSSwagger

A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks

0

Security Audit

+2

DOMXSS Scanner

A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.

0

Source Code Analysis

Web Security

Security Testing

DOMXSS Scanner

A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.

0

Source Code Analysis

+2

XSS'OR

Hack with JavaScript XSS'OR tool for encoding/decoding and various XSS related functionalities.

0

XSS'OR

Hack with JavaScript XSS'OR tool for encoding/decoding and various XSS related functionalities.

0

Naxsi

A third-party Nginx module that prevents common web attacks by reading a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities.

0

Web Application Security

Naxsi

A third-party Nginx module that prevents common web attacks by reading a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities.

0

+3

N-Stalker

A web security tool that scans for vulnerabilities and known attacks.

0

Web Security

Sql Injection

N-Stalker

A web security tool that scans for vulnerabilities and known attacks.

0

+3

DOMPurify

DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.

0

DOMPurify

DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.

0

+1

Cyclops

A browser with XSS detection capabilities

0

Cyclops

A browser with XSS detection capabilities

0

+2

XSSer

Automatic tool for pentesting XSS attacks against different applications

0

Security Research

XSSer

Automatic tool for pentesting XSS attacks against different applications

0

+2

damnvulnerable.me

A deliberately vulnerable modern day app with lots of DOM related bugs

0

damnvulnerable.me

A deliberately vulnerable modern day app with lots of DOM related bugs

0

+4

XSS Polyglot Challenge

XSS Polyglot Challenge - XSS payload running in multiple contexts for testing XSS.

0

XSS Polyglot Challenge

XSS Polyglot Challenge - XSS payload running in multiple contexts for testing XSS.

0

+1

0l4bs Cross-site scripting labs

Cross-site scripting labs for web application security enthusiasts

0

0l4bs Cross-site scripting labs

Cross-site scripting labs for web application security enthusiasts

0

+1

XSS (Cross Site Scripting) Cheatsheet

A comprehensive cheatsheet for XSS filter evasion techniques.

0

XSS (Cross Site Scripting) Cheatsheet

A comprehensive cheatsheet for XSS filter evasion techniques.

0

Web Application Exploits and Defenses

An educational codelab that demonstrates web application vulnerabilities including XSS, XSRF, and code execution attacks along with their corresponding defensive measures.

0

Vulnerability Exploitation

Educational

Web Application Security

Web Security

Security Training

Web Application Exploits and Defenses

An educational codelab that demonstrates web application vulnerabilities including XSS, XSRF, and code execution attacks along with their corresponding defensive measures.

0

Educational

Web Application Security