{"id":15713628,"url":"https://github.com/hahwul/xssmaze","last_synced_at":"2026-03-13T01:32:12.560Z","repository":{"id":156456901,"uuid":"619079496","full_name":"hahwul/xssmaze","owner":"hahwul","description":"XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnerabilities.","archived":false,"fork":false,"pushed_at":"2026-03-06T09:37:49.000Z","size":603,"stargazers_count":31,"open_issues_count":0,"forks_count":4,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-03-06T13:53:44.183Z","etag":null,"topics":["crystal-lang","hacking","security","vulnapp","xss","xss-maze"],"latest_commit_sha":null,"homepage":"","language":"Crystal","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/hahwul.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":"AGENTS.md","dco":null,"cla":null}},"created_at":"2023-03-26T07:47:13.000Z","updated_at":"2026-02-16T08:00:56.000Z","dependencies_parsed_at":null,"dependency_job_id":"a98e5aaf-5c07-4fc1-9bea-4a39735020f2","html_url":"https://github.com/hahwul/xssmaze","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/hahwul/xssmaze","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hahwul%2Fxssmaze","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hahwul%2Fxssmaze/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hahwul%2Fxssmaze/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hahwul%2Fxssmaze/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/hahwul","download_url":"https://codeload.github.com/hahwul/xssmaze/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hahwul%2Fxssmaze/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30453611,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-12T21:31:01.033Z","status":"ssl_error","status_checked_at":"2026-03-12T21:30:43.161Z","response_time":114,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["crystal-lang","hacking","security","vulnapp","xss","xss-maze"],"created_at":"2024-10-03T21:32:32.867Z","updated_at":"2026-03-13T01:32:12.528Z","avatar_url":"https://github.com/hahwul.png","language":"Crystal","funding_links":[],"categories":["Security"],"sub_categories":[],"readme":"\u003cimg src=\"https://user-images.githubusercontent.com/13212227/228863802-7a020ae4-fe15-48ad-a10a-5e81ac7f9324.png\" style=\"width:200px;\"\u003e\n\n[![Crystal CI](https://github.com/hahwul/xssmaze/actions/workflows/crystal_build.yml/badge.svg)](https://github.com/hahwul/xssmaze/actions/workflows/crystal_build.yml)\n[![Crystal Lint](https://github.com/hahwul/xssmaze/actions/workflows/crystal_lint.yml/badge.svg)](https://github.com/hahwul/xssmaze/actions/workflows/crystal_lint.yml)\n[![Docker](https://github.com/hahwul/xssmaze/actions/workflows/ghcr.yml/badge.svg)](https://github.com/hahwul/xssmaze/actions/workflows/ghcr.yml)\n\nXSSMaze is a web service configured to be vulnerable to XSS and is intended to measure and enhance the performance of security testing tools. You can find several vulnerable cases in the list below.\n\n## Installation\n### From Source \n```bash\n# Install dependencies\nshards install\n\n# Build\nshards build # Dev build\nshards build --release --no-debug --production\n\n# Run XSSMaze\n# Defatul: http://0.0.0.0:3000\n./bin/xssmaze\n```\n\n### From Docker\n```bash\ndocker pull ghcr.io/hahwul/xssmaze:main\n```\n\n## Usage\n```bash\n./xssmaze\n\n# -b HOST, --bind HOST             Host to bind (defaults to 0.0.0.0)\n# -p PORT, --port PORT             Port to listen for connections (defaults to 3000)\n# -s, --ssl                        Enables SSL\n# --ssl-key-file FILE              SSL key file\n# --ssl-cert-file FILE             SSL certificate file\n# -h, --help                       Shows this help\n```\n\n## Map API\n```\ncurl http://localhost:3000/map/txt\ncurl http://localhost:3000/map/json\n```\n\n```http\nHTTP/1.1 200 OK\nConnection: keep-alive\nContent-Length: 611\nContent-Type: application/json\nX-Powered-By: Kemal\n\n{\n    \"endpoints\": [\n        \"/basic/level1/?query=a\",\n        \"/basic/level2/?query=a\",\n        \"/basic/level3/?query=a\",\n        \"/basic/level4/?query=a\",\n        \"/basic/level5/?query=a\",\n        \"/basic/level6/?query=a\",\n        \"/basic/level7/?query=a\",\n        \"/dom/level1/\",\n        \"/dom/level2/\",\n        \"/dom/level3/\",\n        \"/dom/level4/\"\n        ...\n    ]\n}\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhahwul%2Fxssmaze","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhahwul%2Fxssmaze","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhahwul%2Fxssmaze/lists"}