"topic:dom-xss" — Search

19 results for “topic:dom-xss”

Open Redirection Analyzer

crlf-injectiondom-xsshacktoberfestopen-redirectionsscanner

ajinabraham/OWASP-Xenotix-XSS-Exploit-Framework

OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.

Python541180Updated 5 years ago

dom-xssexploitation-frameworkxenotixxssxss-detectionxss-exploitationxss-scanner

LeSuisse/vue-dompurify-html

Safe replacement for the v-html directive

TypeScript33229Updated 2 hours ago

dom-xssdompurifysecurityvuevuejsxss

0xSobky/XSSBuster

XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!

JavaScript388Updated 7 years ago

dom-xssinjection-attacksweb-securityxssxss-filter

easypro-tech/brs-xss

MIT license BRS-XSS is a modular Python CLI scanner for XSS vulnerabilities. Features context-aware payloads, WAF evasion, DOM analysis via Playwright, ML-based risk scoring, and export in HTML/JSON/SARIF. Designed for integration with Brabus Recon Suite (BRS).

Python345Updated 2 months ago

appsecbrabusbug-bountycybersecuritydom-xsseasyprotechethical-hackingowasppenetration-testingplaywrightsecuritysecurity-automationsecurity-toolsvulnerability-scannerwaf-bypassweb-securityxss

ariary/DomXssFinder

Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰

Shell233Updated 2 years ago

bug-bountydom-xsspentestpentest-toolscannersecurityweb-application-securityweb-application-security-scannerxss

AdityaBhatt3010/DOM-XSS-in-document.write-sink-using-source-location.search-BurpSuite-Lab

DOM-based XSS where location.search is written into the page via innerHTML, letting us inject HTML and trigger alert(1) using an SVG onload payload.

100Updated 3 months ago

burpburpsuitecross-site-scriptingcybersecuritydomdom-xssxss

AdityaBhatt3010/DOM-XSS-in-innerHTML-sink-using-source-location.search-BurpSuite-Lab

DOM-based XSS flaw where location.search is injected into the page via innerHTML, letting us execute arbitrary JavaScript.

100Updated 3 months ago

burpburpsuitecross-site-scriptingcybersecuritydomdom-xssxss

AdityaBhatt3010/DOM-XSS-in-jQuery-anchor-href-attribute-sink-using-location.search-source

DOM XSS in jQuery anchor href attribute sink using location.search source

91Updated 3 months ago

burpburpsuitecross-site-scriptingcybersecuritydom-xssxss

alanEG/dombrute

Discovering the JavaScript parameters for dom-xss

Python40Updated 2 years ago

bug-bountybugbountybugbounty-tooldom-xssdomxssparametersxss

URDev4ever/UIT

URDev’s Ultimate Injection Template is my personal payload collection: a comprehensive reference collection of web injection vectors, focused primarily on client-side execution surfaces in modern and legacy web applications.

20Updated 1 week ago

browser-abusebrowser-securitybug-bountyclient-sidedom-analysisdom-xsseducationalhtml-injectioninjectionmanual-testingoffensive-securityparser-confusionpayload-collectionpentestingreferencesecurity-researchwaf-bypassweb-payloadsweb-securityxss

alimehridev/DOM-Watcher

A chrome extension to detect DOM changes and reflections to find XSS

JavaScript10Updated 5 months ago

chrome-extensiondom-xssexploitationxss-detection

ridpath/dom-clobbering-cheatsheet

Ultimate DOM Clobbering Cheat Sheet - 100+ exploitation vectors for XSS, CSP bypass, and client-side attacks. Covers browser compatibility, framework evasion, and real-world exploit chains for security researchers and bug bounty hunters

10Updated 3 months ago