Xss

PINNED

• 

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  Dark Web Monitoring

  Cloud Security

  Vulnerability Management

  Compliance

  Third Party Risk

  Threat Intelligence

  Security Monitoring

  

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  +7
• 

  InfoSecHired

  An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

  0

  Commercial

  Resources

  Resources

  Cybersecurity

  Education

  Training

  Security Professionals

  

  InfoSecHired

  An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

  0

  Commercial

  Resources

  Resources

  Cybersecurity

  Education

  +2
• 

  Mandos Brief Newsletter

  A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

  0

  Free

  Resources

  Security Education

  Resources

  Training

  Security Information

  Education

  Security Community

  

  Mandos Brief Newsletter

  A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

  0

  Free

  Resources

  Security Education

  Resources

  Training

  +3
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Check Point CloudGuard WAF

  A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

  0

  Commercial

  Application Security

  Web App Security

  Api Security

  Cloud Security

  Waf

  Ddos

  Bot Detection

  Machine Learning

  Api Discovery

  Threat Prevention

  Zero Day

  

  Check Point CloudGuard WAF

  A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

  0

  Commercial

  Application Security

  Web App Security

  Api Security

  Cloud Security

  +7
• 

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  Compliance

  Container Security

  Cloud Compliance

  Api Security

  Kubernetes Security

  Security Monitoring

  Security Automation

  

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  +7
• 

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  0

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  Static Analysis

  Security Automation

  Devsecops

  

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  0

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  +3
• 

  Wiz

  Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

  0

  Commercial

  Cloud Security

  Cloud Security

  Devops

  Security Platform

  Cybersecurity

  

  Wiz

  Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

  0

  Commercial

  Cloud Security

  Cloud Security

  Devops

  Security Platform

  +1

LATEST ADDITIONS

• 

  Node.js Goof

  Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits

  0

  Free

  Application Security

  Appsec

  Nodejs

  Vulnerable App

  Docker

  Open Redirect

  Code Injection

  Xss

  Local File Inclusion

  Directory Traversal

  Command Execution

  

  Node.js Goof

  Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits

  0

  Free

  Application Security

  Appsec

  Nodejs

  Vulnerable App

  +7
• 

  BruteXSS

  A tool to find XSS vulnerabilities in web applications

  0

  Free

  Malware Analysis

  Xss

  Vulnerability Scanning

  Web Security

  Web Application Security

  Security Testing

  

  BruteXSS

  A tool to find XSS vulnerabilities in web applications

  0

  Free

  Malware Analysis

  Xss

  Vulnerability Scanning

  Web Security

  +2
• 

  weaponised-XSS-payloads

  A collection of XSS payloads designed to turn alert(1) into P1

  0

  Free

  Malware Analysis

  Xss

  Payload

  Javascript

  Security Testing

  

  weaponised-XSS-payloads

  A collection of XSS payloads designed to turn alert(1) into P1

  0

  Free

  Malware Analysis

  Xss

  Payload

  Javascript

  +1
• 

  Vaya-Ciego-Nen

  A tool to detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Blind Xss

  Vulnerability Detection

  Vulnerability Exploitation

  Security Testing

  Web Security

  

  Vaya-Ciego-Nen

  A tool to detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Blind Xss

  Vulnerability Detection

  +3
• 

  xssor2

  A tool for testing and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Javascript

  Security Testing

  Vulnerability Exploitation

  Web App Security

  

  xssor2

  A tool for testing and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Javascript

  Security Testing

  +2
• 

  findom-xss

  A fast and simple DOM based XSS vulnerability scanner

  0

  Free

  Malware Analysis

  Xss

  Scanner

  Vulnerability

  Proof Of Concept

  

  findom-xss

  A fast and simple DOM based XSS vulnerability scanner

  0

  Free

  Malware Analysis

  Xss

  Scanner

  Vulnerability

  +1
• 

  XSSCon

  A simple XSS scanner tool for identifying Cross-Site Scripting vulnerabilities

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Web Security

  Penetration Testing

  Security Research

  

  XSSCon

  A simple XSS scanner tool for identifying Cross-Site Scripting vulnerabilities

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Web Security

  +2
• 

  xss2png

  A tool to generate a PNG image containing a XSS payload

  0

  Free

  Honeypots

  Xss

  Xss Payload

  Png

  Security Research

  Educational

  

  xss2png

  A tool to generate a PNG image containing a XSS payload

  0

  Free

  Honeypots

  Xss

  Xss Payload

  Png

  +2
• 

  XSpear

  A powerful XSS scanning and parameter analysis tool

  0

  Free

  Offensive Security

  Xss

  Scanning

  Security Testing

  Vulnerability Scanning

  

  XSpear

  A powerful XSS scanning and parameter analysis tool

  0

  Free

  Offensive Security

  Xss

  Scanning

  Security Testing

  +1
• 

  Dalfox

  Dalfox is a powerful open-source XSS scanner and utility focused on automation.

  0

  Free

  Malware Analysis

  Xss

  Scanner

  Automation

  Security Research

  Web Security

  

  Dalfox

  Dalfox is a powerful open-source XSS scanner and utility focused on automation.

  0

  Free

  Malware Analysis

  Xss

  Scanner

  Automation

  +2
• 

  SSRFire

  Automated SSRF finder with options for XSS and open redirects

  0

  Free

  Network Security

  Ssrf

  Xss

  Open Redirect

  Vulnerability Scanning

  Web App Security

  

  SSRFire

  Automated SSRF finder with options for XSS and open redirects

  0

  Free

  Network Security

  Ssrf

  Xss

  Open Redirect

  +2
• 

  XSStrike

  A powerful tool for identifying and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Fuzzing

  Payload Generation

  

  XSStrike

  A powerful tool for identifying and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Fuzzing

  +1
• 

  DOMdig

  DOM XSS scanner for Single Page Applications

  0

  Free

  Malware Analysis

  Appsec

  Appsec Tool

  Xss

  Xss Scanner

  

  DOMdig

  DOM XSS scanner for Single Page Applications

  0

  Free

  Malware Analysis

  Appsec

  Appsec Tool

  Xss

  +1
• 

  XSSOauthPersistence

  Maintaining account persistence via XSS and Oauth

  0

  Free

  Offensive Security

  Xss

  

  XSSOauthPersistence

  Maintaining account persistence via XSS and Oauth

  0

  Free

  Offensive Security

  Xss
• 

  XSSwagger

  A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks

  0

  Free

  Application Security

  Xss

  Vulnerability Scanning

  Security Audit

  Devsecops

  Security Testing

  

  XSSwagger

  A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks

  0

  Free

  Application Security

  Xss

  Vulnerability Scanning

  Security Audit

  +2
• 

  Femida

  Automated blind-xss search for Burp Suite

  0

  Free

  Malware Analysis

  Appsec

  Burp Suite

  Blind Xss

  Xss

  Security Research

  Penetration Testing

  Python

  

  Femida

  Automated blind-xss search for Burp Suite

  0

  Free

  Malware Analysis

  Appsec

  Burp Suite

  Blind Xss

  +4
• 

  docem

  A tool to embed XXE and XSS payloads in various file formats

  0

  Free

  Malware Analysis

  Xxe

  Xss

  

  docem

  A tool to embed XXE and XSS payloads in various file formats

  0

  Free

  Malware Analysis

  Xxe

  Xss
• 

  xssValidator

  A Burp intruder extender for automating and validating XSS vulnerabilities

  0

  Free

  Malware Analysis

  Appsec

  Xss

  Automation

  Vulnerability Scanning

  

  xssValidator

  A Burp intruder extender for automating and validating XSS vulnerabilities

  0

  Free

  Malware Analysis

  Appsec

  Xss

  Automation

  +1
• 

  extended-xss-search

  A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Web Security

  Vulnerability Scanning

  

  extended-xss-search

  A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Web Security

  +1
• 

  OWASP Joomla Vulnerability Scanner

  A free and open-source tool for identifying vulnerabilities in Joomla-based websites.

  0

  Free

  Vulnerability Management

  Vulnerability Scanner

  Sql Injection

  Xss

  Csrf

  Web App Security

  Web Application Security

  

  OWASP Joomla Vulnerability Scanner

  A free and open-source tool for identifying vulnerabilities in Joomla-based websites.

  0

  Free

  Vulnerability Management

  Vulnerability Scanner

  Sql Injection

  Xss

  +3
• 

  ParamPamPam

  A tool for detecting and exploiting vulnerabilities in web applications

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Fuzzing

  Sql Injection

  Xss

  Web App Security

  

  ParamPamPam

  A tool for detecting and exploiting vulnerabilities in web applications

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Fuzzing

  +3
• 

  DOMXSS Scanner

  A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.

  0

  Free

  Application Security

  Xss

  Vulnerability Scanning

  Source Code Analysis

  Web Security

  Security Testing

  

  DOMXSS Scanner

  A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.

  0

  Free

  Application Security

  Xss

  Vulnerability Scanning

  Source Code Analysis

  +2
• 

  xsshunter

  A portable version of XSSHunter.com for finding and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Web Application Security

  Vulnerability Scanning

  

  xsshunter

  A portable version of XSSHunter.com for finding and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Web Application Security

  Vulnerability Scanning
• 

  XSS'OR

  Hack with JavaScript XSS'OR tool for encoding/decoding and various XSS related functionalities.

  0

  Free

  Application Security

  Xss

  Javascript

  

  XSS'OR

  Hack with JavaScript XSS'OR tool for encoding/decoding and various XSS related functionalities.

  0

  Free

  Application Security

  Xss

  Javascript
• 

  dom-based-xss-finder

  DOM-based XSS vulnerability scanner

  0

  Free

  Vulnerability Management

  Xss

  Web Application Security

  Vulnerability Scanning

  Chrome Extension

  

  dom-based-xss-finder

  DOM-based XSS vulnerability scanner

  0

  Free

  Vulnerability Management

  Xss

  Web Application Security

  Vulnerability Scanning

  +1
• 

  Rexsser

  A Burp plugin for identifying potential vulnerabilities in web applications

  0

  Free

  Malware Analysis

  Appsec

  Bug Bounty

  Cve

  Security Research

  Vulnerability Scanning

  Xss

  

  Rexsser

  A Burp plugin for identifying potential vulnerabilities in web applications

  0

  Free

  Malware Analysis

  Appsec

  Bug Bounty

  Cve

  +3
• 

  Shadow Workers

  A free and open source C2 and proxy for penetration testers

  0

  Free

  Offensive Security

  C2

  Proxy

  Penetration Testing

  Xss

  Security Research

  

  Shadow Workers

  A free and open source C2 and proxy for penetration testers

  0

  Free

  Offensive Security

  C2

  Proxy

  Penetration Testing

  +2
• 

  Naxsi

  A third-party Nginx module that prevents common web attacks by reading a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities.

  0

  Free

  Application Security

  Appsec

  Nginx

  Web Security

  Sql Injection

  Xss

  Web Application Security

  

  Naxsi

  A third-party Nginx module that prevents common web attacks by reading a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities.

  0

  Free

  Application Security

  Appsec

  Nginx

  Web Security

  +3
• 

  xssmap

  A Python-based tool for detecting XSS vulnerabilities

  0

  Free

  Malware Analysis

  Xss

  Web App Security

  Web Security

  Python

  

  xssmap

  A Python-based tool for detecting XSS vulnerabilities

  0

  Free

  Malware Analysis

  Xss

  Web App Security

  Web Security

  +1
• 

  ircmaxell's Blog

  A blog about various cybersecurity-related topics, including home networking, compiler development, and security vulnerabilities.

  0

  Free

  Blogs and News

  Networking

  Php

  Xss

  Rails

  

  ircmaxell's Blog

  A blog about various cybersecurity-related topics, including home networking, compiler development, and security vulnerabilities.

  0

  Free

  Blogs and News

  Networking

  Php

  Xss

  +1
• 

  N-Stalker

  A web security tool that scans for vulnerabilities and known attacks.

  0

  Free

  Application Security

  Appsec

  Devsecops

  Vulnerability Scanning

  Web Security

  Xss

  Sql Injection

  

  N-Stalker

  A web security tool that scans for vulnerabilities and known attacks.

  0

  Free

  Application Security

  Appsec

  Devsecops

  Vulnerability Scanning

  +3
• 

  Acunetix Web Vulnerability Scanner Demo Site

  A demonstration site for the Acunetix Web Vulnerability Scanner, featuring intentionally vulnerable PHP code to test web application security.

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Vulnerability Scanning

  Web App Security

  Sql Injection

  Xss

  

  Acunetix Web Vulnerability Scanner Demo Site

  A demonstration site for the Acunetix Web Vulnerability Scanner, featuring intentionally vulnerable PHP code to test web application security.

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Vulnerability Scanning

  +3
• 

  DOMPurify

  DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.

  0

  Free

  Application Security

  Xss

  Security

  Javascript

  Nodejs

  

  DOMPurify

  DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.

  0

  Free

  Application Security

  Xss

  Security

  Javascript

  +1
• 

  Cyclops

  A browser with XSS detection capabilities

  0

  Free

  Application Security

  Xss

  Browser

  Security Testing

  Web Security

  Windows

  

  Cyclops

  A browser with XSS detection capabilities

  0

  Free

  Application Security

  Xss

  Browser

  Security Testing

  +2
• 

  Acunetix Web Vulnerability Scanner

  A tool that automatically audits website security by crawling an entire website and identifying vulnerabilities

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Web App Security

  Sql Injection

  Xss

  

  Acunetix Web Vulnerability Scanner

  A tool that automatically audits website security by crawling an entire website and identifying vulnerabilities

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Web App Security

  +2
• 

  XSSer

  Automatic tool for pentesting XSS attacks against different applications

  0

  Free

  Application Security

  Xss

  Pentesting

  Web App Security

  Vulnerability Scanning

  Security Research

  

  XSSer

  Automatic tool for pentesting XSS attacks against different applications

  0

  Free

  Application Security

  Xss

  Pentesting

  Web App Security

  +2
• 

  damnvulnerable.me

  A deliberately vulnerable modern day app with lots of DOM related bugs

  0

  Free

  Application Security

  Appsec

  Bug Bounty

  Csrf

  Penetration Testing

  Security Research

  Web Security

  Xss

  

  damnvulnerable.me

  A deliberately vulnerable modern day app with lots of DOM related bugs

  0

  Free

  Application Security

  Appsec

  Bug Bounty

  Csrf

  +4
• 

  Xss-Sql-Fuzz

  A Burp Suite plugin for automatically adding XSS and SQL payload to fuzz

  0

  Free

  Malware Analysis

  Burp Suite

  Fuzzing

  Xss

  Sql Injection

  Payload Generation

  

  Xss-Sql-Fuzz

  A Burp Suite plugin for automatically adding XSS and SQL payload to fuzz

  0

  Free

  Malware Analysis

  Burp Suite

  Fuzzing

  Xss

  +2
• 

  XSS Polyglot Challenge

  XSS Polyglot Challenge - XSS payload running in multiple contexts for testing XSS.

  0

  Free

  Application Security

  Xss

  Xss Payload

  Security Testing

  Web Security

  

  XSS Polyglot Challenge

  XSS Polyglot Challenge - XSS payload running in multiple contexts for testing XSS.

  0

  Free

  Application Security

  Xss

  Xss Payload

  Security Testing

  +1
• 

  0l4bs Cross-site scripting labs

  Cross-site scripting labs for web application security enthusiasts

  0

  Free

  Application Security

  Xss

  Ctf

  Web Security

  Vulnerable App

  

  0l4bs Cross-site scripting labs

  Cross-site scripting labs for web application security enthusiasts

  0

  Free

  Application Security

  Xss

  Ctf

  Web Security

  +1
• 

  XSS (Cross Site Scripting) Cheatsheet

  A comprehensive cheatsheet for XSS filter evasion techniques.

  0

  Free

  Application Security

  Xss

  

  XSS (Cross Site Scripting) Cheatsheet

  A comprehensive cheatsheet for XSS filter evasion techniques.

  0

  Free

  Application Security

  Xss
• 

  Bug Bounty Reference

  A categorized collection of bug bounty write-ups for various vulnerabilities.

  0

  Free

  Vulnerability Management

  Bug Bounty

  Vulnerability Exploitation

  Xss

  Xxe

  Rce

  Deserialization

  Csrf

  

  Bug Bounty Reference

  A categorized collection of bug bounty write-ups for various vulnerabilities.

  0

  Free

  Vulnerability Management

  Bug Bounty

  Vulnerability Exploitation

  Xss

  +4
• 

  ezXSS

  A tool for testing Cross Site Scripting vulnerabilities

  0

  Free

  Offensive Security

  Xss

  Penetration Testing

  Bug Bounty

  Blind Xss

  

  ezXSS

  A tool for testing Cross Site Scripting vulnerabilities

  0

  Free

  Offensive Security

  Xss

  Penetration Testing

  Bug Bounty

  +1
• 

  Wapiti

  Web-application vulnerability scanner with extensive coverage of security testing modules.

  0

  Free

  Vulnerability Management

  Web App Security

  Vulnerability Scanning

  Sql Injection

  Xss

  Command Execution

  Xxe

  

  Wapiti

  Web-application vulnerability scanner with extensive coverage of security testing modules.

  0

  Free

  Vulnerability Management

  Web App Security

  Vulnerability Scanning

  Sql Injection

  +3
• 

  Paros

  A Java based HTTP/HTTPS proxy for assessing web application vulnerability with various useful features.

  0

  Free

  Vulnerability Management

  Appsec

  Proxy

  Web App Security

  Vulnerability Assessment

  Xss

  Sql Injection

  

  Paros

  A Java based HTTP/HTTPS proxy for assessing web application vulnerability with various useful features.

  0

  Free

  Vulnerability Management

  Appsec

  Proxy

  Web App Security

  +3