Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/portswigger/xss-cheatsheet-data
This repository contains all the XSS cheatsheet data to allow contributions from the community.
https://github.com/portswigger/xss-cheatsheet-data
Last synced: 7 days ago
JSON representation
This repository contains all the XSS cheatsheet data to allow contributions from the community.
- Host: GitHub
- URL: https://github.com/portswigger/xss-cheatsheet-data
- Owner: PortSwigger
- License: other
- Created: 2019-10-02T07:57:42.000Z (about 5 years ago)
- Default Branch: master
- Last Pushed: 2024-11-05T15:33:01.000Z (9 days ago)
- Last Synced: 2024-11-05T15:34:36.032Z (9 days ago)
- Size: 252 KB
- Stars: 402
- Watchers: 26
- Forks: 81
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
This is the data that powers the [PortSwigger XSS cheat sheet](https://portswigger.net/web-security/cross-site-scripting/cheat-sheet). We have put this data on Github so the community can contribute vectors via pull requests.
## Contributing
To contribute please create a pull request with changes to the JSON data.
For example, to add onwaiting to the data, do:
```javascript
"onwaiting": {
"description": "Fires when while waiting for the data",
"tags": [
{
"tag": "video",
"code": "<\/video>",
"browsers": [
"edge"
],
"interaction": false
}
]
}
```The tags array contains the tags supported by the vector and browser support. Supported browsers are chrome,safari,firefox,edge all in lowercase. The interaction flag specifies if the vector requires user interaction.
Please make sure you search the data to ensure your vector hasn't already been added.
Please include your Twitter handle in the pull request message if you would like to be credited with it.## License
The copyright for this project belongs to PortSwigger Web Security. We do not want this data to be used to create derivative cheat sheets hosted elsewhere, so we are not providing a license. That said, you are free to fork this repo in order to create pull requests back.