https://github.com/jamarshon/xss-angular
A website documentation for how to exploit Angular's sandbox through XSS (Cross-Site Scripting)
https://github.com/jamarshon/xss-angular
Last synced: 4 months ago
JSON representation
A website documentation for how to exploit Angular's sandbox through XSS (Cross-Site Scripting)
- Host: GitHub
- URL: https://github.com/jamarshon/xss-angular
- Owner: jamarshon
- Created: 2016-12-16T01:42:34.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2018-12-29T07:47:59.000Z (over 7 years ago)
- Last Synced: 2025-08-20T22:36:30.750Z (11 months ago)
- Language: HTML
- Size: 48.8 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
#XSS-Angular
A website documentation for how to exploit Angular's sandbox through XSS (Cross-Site Scripting)
The site can be found here (https://xss-angular.herokuapp.com/) and it goes through a series of
examples of which code/situation is safe or not e.g (ng-include, ng-bind-html, concatenation,
interpolation, etc.)
Currently, it shows Angular version 1.2.16. Any feedback or pull requests are welcome!
##Setup
Run the following commands in your command prompt
```
git clone https://github.com/jamarshon/xss-angular.git
cd xss-angular
npm install
npm start
```
The site should be running on http://localhost:3000
To run in production first type into your command prompt "gulp" to minify the files
followed by "npm run p".