{"id":17115359,"url":"https://github.com/medicean/sublimexssencode","last_synced_at":"2025-04-13T04:09:00.984Z","repository":{"id":218714978,"uuid":"49881334","full_name":"Medicean/SublimeXssEncode","owner":"Medicean","description":"Converts characters from one encoding to another using a transformation.","archived":false,"fork":false,"pushed_at":"2017-08-01T07:52:20.000Z","size":7178,"stargazers_count":35,"open_issues_count":0,"forks_count":9,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-04-13T04:08:47.684Z","etag":null,"topics":["convert-characters","encoding","security-tools","sublime-text","sublime-text-plugin"],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Medicean.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2016-01-18T14:18:44.000Z","updated_at":"2024-09-20T14:17:40.000Z","dependencies_parsed_at":"2024-01-23T13:04:52.436Z","dependency_job_id":null,"html_url":"https://github.com/Medicean/SublimeXssEncode","commit_stats":null,"previous_names":["medicean/sublimexssencode"],"tags_count":7,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Medicean%2FSublimeXssEncode","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Medicean%2FSublimeXssEncode/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Medicean%2FSublimeXssEncode/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Medicean%2FSublimeXssEncode/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Medicean","download_url":"https://codeload.github.com/Medicean/SublimeXssEncode/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248661704,"owners_count":21141450,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["convert-characters","encoding","security-tools","sublime-text","sublime-text-plugin"],"created_at":"2024-10-14T17:27:29.713Z","updated_at":"2025-04-13T04:09:00.955Z","avatar_url":"https://github.com/Medicean.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Sublime XssEncode\n\n[English](README.md) | [中文说明](README_CN.md)\n\nConverts characters from one encoding to another using a transformation. This tool will help you encode payloads in testing sql injections, XSS holes and site security.\n\n**Convert the region you selected or convert all characters.**\n\nXssEncode supports both Sublime Text 2 and 3.\n\nInstallation\n----\n\nUsing [Package Control](https://sublime.wbond.net/installation) to find, install and upgrade *XssEncode* is the recommended method to install this plug-in.\n\n\nOtherwise, you can use the following steps manually install:\n\n1. Open the Sublime Text Packages folder\n    * OS X: ~/Library/Application Support/Sublime Text 3/Packages/\n    * Windows: %APPDATA%/Sublime Text 3/Packages/\n    * Linux: ~/.Sublime Text 3/Packages/ or ~/.config/sublime-text-3/Packages\n\n2. clone this repo\n\t\n\t```\n\tgit clone https://github.com/Medicean/SublimeXssEncode.git\n\t```\n\n3. Rename the new folder to **xssencode**\n\n\nChangeLog\n---\n\nSee more at [ChangeLog](CHANGELOG.md)\n\nExample Commands\n----\n\n\u003e You can type the Command HotKeys（Win: `ctrl+shift+p`, OSX: Command+shift+p），type `xssencode` and choice your action。Otherwise, click the menu bar `tools` =\u003e `XssEncode` and choice your action.\n\n* `html_escape`\n\n\tConverts characters to their HTML entity.\n\t\n\t**eg:**\n\t\n\t`a1@\u0026` =\u003e `a1@\u0026amp;`\n\n* `html10_encode`\n\t\n\tConverts characters to html entity with decimal.\n\t\n\t**eg:**\n\t\n\t`a1@\u0026` =\u003e `\u0026#97;\u0026#49;\u0026#64;\u0026#38;`\n\n* `html16_encode`\n\n\tConverts characters to html entity with hexadecimal.\n\n\t**eg:**\n\t\n\t`a1@\u0026` =\u003e `\u0026#x61;\u0026#x31;\u0026#x40;\u0026#x26;`\n\n* `html_unescape`\n\n\tConverts html entity to characters.\n\t\n\t**eg:**\n\t\n\t`a\u0026#97;\u0026#x61;\u0026amp;` =\u003e `aaa\u0026`\n\n* `base64_encode`\n\n\tUses base64 to encode into base64\n\t\n\t**eg:**\n\t\n\t`a1@\u0026` =\u003e `YTFAJg==`\n\n* `base64_decode`\n\n\t**eg:**\n\t\n\t`YTFAJg==` =\u003e `a1@\u0026`\n\n* `url_encode`\n\n\t**eg:**\n\t\n\t`alert(/xss/);` =\u003e `alert%28/xss/%29%3B`\n\n* `url_decode`\n\n\t**eg:**\n\t\n\t`alert%28/xss/%29%3B` =\u003e `alert(/xss/);`\n\n* `string_from_char_code`\n\n\t**eg:**\n\t\n\t`alert(/xss/);` =\u003e `String.fromCharCode(97,108,101,114,116,40,47,120,115,115,47,41,59)`\n\n* `mysql_char`\n\n\t**eg:**\n\t\n\t`123` =\u003e `CHAR(49,50,51)`\n\t\n\tYou can excute the sql commands below.\n\t\n\t`select 123;`\n\t\n\t`select CHAR(49,50,51);`\n\t\n* `oracle_chr`\n\n\t**eg:**\n\t\n\t`123` =\u003e `CHR(49)||CHR(50)||CHR(51)`\n\t\n\tYou can excute the sql commands below.\n\t\n\t`select 123;`\n\t\n\t`select CHR(49)||CHR(50)||CHR(51);`\n\n* `php_chr`\n\t\n\tConvert characters with function chr.\n\t\n\t**eg:**\n\t\n\tSupport we have a php backdoor, and the content is `\u003c?php @eval($_REQUEST[cmd]);?\u003e`\n\t\n\tif you want to execute some commands which includes special chars, you can convert it.\n\t\n\t`ls -al` =\u003e `CHR(108).CHR(115).CHR(32).CHR(45).CHR(97).CHR(108)`\n\t\n\tnow you can request the url below:\n\t\n\t`http://127.0.0.1/backdoor.php?cmd=system(CHR(108).CHR(115).CHR(32).CHR(45).CHR(97).CHR(108));`\n\t\n* `string_to_hex`\n\n\tConvert string to hexadecimal, it's more useful for sql injection.\n\n\t**eg:**\n\t\n\t`root` =\u003e `726f6f74`\n\n\tnow you can excute the sql commands below.\n\n\t`SELECT user from mysql.user where user='root';`\n\t\n\t`SELECT user from mysql.user where user=0x726f6f74;`\n\n* `hex_to_string`\n\n\t**eg:**\n\t\n\t`726f6f74` =\u003e `root`\n\n* `unicode_decode`\n\n\t**eg:**\n\t\n\t`测试` =\u003e `\\u6d4b\\u8bd5`\n\n* `unicode_encode`\n\n\t**eg:**\n\t\n\t`\\u6d4b\\u8bd5` =\u003e `测试`\n\n* `md5_encode`\n\n\t**eg:**\n\t\n\t`1` =\u003e `c4ca4238a0b923820dcc509a6f75849b`\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmedicean%2Fsublimexssencode","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmedicean%2Fsublimexssencode","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmedicean%2Fsublimexssencode/lists"}