Application Security for Xss

Essential tools and best practices for securing software applications throughout their lifecycle. Task: XssExplore 13 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

RELATED TASKS

access-management (1)ai (14)analytics (1)androguard (1)android-security (1)antivirus (1)apache (3)api (5)api-access (1)api-discovery (1)

PINNED

PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
1
Commercial
Offensive Security
Ai
Penetration Testing
Automation
Security Testing
Exploitation
Reconnaissance
Reporting
Security Assessment
Offensive Security
Vulnerability Exploitation
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
1
Commercial
Offensive Security
Ai
Penetration Testing
Automation
+7
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
0
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
Security Operations
Cti
Threat Detection
Security Monitoring
Rule Management
Threat Hunting
Security Information And Event Management
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
0
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

Node.js Goof
Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits
0
Free
Application Security
Appsec
Nodejs
Vulnerable App
Docker
Open Redirect
Code Injection
Xss
Local File Inclusion
Directory Traversal
Command Execution
Node.js Goof
Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits
0
Free
Application Security
Appsec
Nodejs
Vulnerable App
+7
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
Devsecops
Security Testing
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
+2
DOMXSS Scanner
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
0
Free
Application Security
Xss
Vulnerability Scanning
Source Code Analysis
Web Security
Security Testing
DOMXSS Scanner
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
0
Free
Application Security
Xss
Vulnerability Scanning
Source Code Analysis
+2
XSS'OR
Hack with JavaScript XSS'OR tool for encoding/decoding and various XSS related functionalities.
0
Free
Application Security
Xss
Javascript
XSS'OR
Hack with JavaScript XSS'OR tool for encoding/decoding and various XSS related functionalities.
0
Free
Application Security
Xss
Javascript
Naxsi
A third-party Nginx module that prevents common web attacks by reading a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities.
0
Free
Application Security
Appsec
Nginx
Web Security
Sql Injection
Xss
Web Application Security
Naxsi
A third-party Nginx module that prevents common web attacks by reading a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities.
0
Free
Application Security
Appsec
Nginx
Web Security
+3
N-Stalker
A web security tool that scans for vulnerabilities and known attacks.
0
Free
Application Security
Appsec
Devsecops
Vulnerability Scanning
Web Security
Xss
Sql Injection
N-Stalker
A web security tool that scans for vulnerabilities and known attacks.
0
Free
Application Security
Appsec
Devsecops
Vulnerability Scanning
+3
DOMPurify
DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.
0
Free
Application Security
Xss
Security
Javascript
Nodejs
DOMPurify
DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.
0
Free
Application Security
Xss
Security
Javascript
+1
Cyclops
A browser with XSS detection capabilities
0
Free
Application Security
Xss
Browser
Security Testing
Web Security
Windows
Cyclops
A browser with XSS detection capabilities
0
Free
Application Security
Xss
Browser
Security Testing
+2
XSSer
Automatic tool for pentesting XSS attacks against different applications
0
Free
Application Security
Xss
Pentesting
Web App Security
Vulnerability Scanning
Security Research
XSSer
Automatic tool for pentesting XSS attacks against different applications
0
Free
Application Security
Xss
Pentesting
Web App Security
+2
damnvulnerable.me
A deliberately vulnerable modern day app with lots of DOM related bugs
0
Free
Application Security
Appsec
Bug Bounty
Csrf
Penetration Testing
Security Research
Web Security
Xss
damnvulnerable.me
A deliberately vulnerable modern day app with lots of DOM related bugs
0
Free
Application Security
Appsec
Bug Bounty
Csrf
+4
XSS Polyglot Challenge
XSS Polyglot Challenge - XSS payload running in multiple contexts for testing XSS.
0
Free
Application Security
Xss
Xss Payload
Security Testing
Web Security
XSS Polyglot Challenge
XSS Polyglot Challenge - XSS payload running in multiple contexts for testing XSS.
0
Free
Application Security
Xss
Xss Payload
Security Testing
+1
0l4bs Cross-site scripting labs
Cross-site scripting labs for web application security enthusiasts
0
Free
Application Security
Xss
Ctf
Web Security
Vulnerable App
0l4bs Cross-site scripting labs
Cross-site scripting labs for web application security enthusiasts
0
Free
Application Security
Xss
Ctf
Web Security
+1
XSS (Cross Site Scripting) Cheatsheet
A comprehensive cheatsheet for XSS filter evasion techniques.
0
Free
Application Security
Xss
XSS (Cross Site Scripting) Cheatsheet
A comprehensive cheatsheet for XSS filter evasion techniques.
0
Free
Application Security
Xss

Application Security for Xss

RELATED TASKS

PINNED

PTJunior

PTJunior

CTIChef.com Detection Feeds

CTIChef.com Detection Feeds

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

Node.js Goof

Node.js Goof

XSSwagger

XSSwagger

DOMXSS Scanner

DOMXSS Scanner

XSS'OR

XSS'OR

Naxsi

Naxsi

N-Stalker

N-Stalker

DOMPurify

DOMPurify

Cyclops

Cyclops

XSSer

XSSer

damnvulnerable.me

damnvulnerable.me

XSS Polyglot Challenge

XSS Polyglot Challenge

0l4bs Cross-site scripting labs

0l4bs Cross-site scripting labs

XSS (Cross Site Scripting) Cheatsheet

XSS (Cross Site Scripting) Cheatsheet