0l4bs Cross-site scripting labs Logo

0l4bs Cross-site scripting labs

0
Free
Visit Website

List of Challenges: ~ Chall 1 | URL ~ Chall 2 | Form ~ Chall 3 | User-Agent ~ Chall 4 | Referrer ~ Chall 5 | Cookie ~ Chall 6 | LocalStorage ~ Chall 7 | Login Page ~ Chall 8 | File Upload ~ Chall 9 | Base64 Encoding ~ Chall 10 | Removes Alert ~ Chall 11 | Removes Script ~ Chall 12 | Preg_replace ~ Chall 13 | HTML Entities ~ Chall 14 | Regex Filter #1 ~ Chall 15 | Regex Filter #2 ~ Chall 16 | Regex Filter #3 ~ Chall 17 | HTML Entities + URL Encode ~ Chall 18 | HTML Entities #2 (Special Character) ~ Chall 19 | HTML Entities #3 (Input Value) ~ Chall 20 | HTML Entities #4 (Input Value + Capitalizes) Screenshot: Instalation: Run your web server (XAMPP / LAMPP) Clone the repository and put the files in the /htdocs/xss-labs You can access http://localhost:8080/xss-labs Happy Hacking ^_^ Run this image: To run this image you need docker installed. Just run the command: docker run --name web-ctf -d -it -p 80:80 hightechsec/xsslabs Deploy Manually Docker image: Clone this repo (git clone https://github.com/tegal1337/0l4bs) Then run docker build -t "xsslabs" . and wait until it's done If the build is clear, run this command

FEATURES

ALTERNATIVES

Tracee is a runtime security and observability tool using eBPF technology.

A SaaS-based web application firewall that combines signature and behavioral-based threat detection to protect applications deployed across cloud, on-premises and edge environments.

A cloud-based DAST solution that discovers, inventories, and tests web applications and APIs for security vulnerabilities across diverse environments.

An open-source tool for detecting and analyzing Android apps' vulnerabilities and security issues.

DECAF++ is a fast whole-system dynamic taint analysis framework with improved performance and elasticity.

IronBee is an open source project building a universal web application security sensor.

A tool for building and installing PhoneyC with optional Python version configuration and root privileges.

Dynamic Java code instrumentation kit for Android applications.