Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/yaph/domxssscanner

DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities
https://github.com/yaph/domxssscanner

dom domxss online-tool scanner web-security xss-vulnerability

Last synced: about 1 month ago
JSON representation

DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities

Awesome Lists containing this project

README

        

[DOM XSS Scanner](http://domxssscanner.geeksta.net/) is an online tool that
facilitates code review of web pages and JavaScript code for potential
DOM based XSS security vulnerabilities.

## Sample Results Page

![Sample Results Page](/static/img/domxssscanner-results.jpg)

[Check your Web page](http://domxssscanner.geeksta.net/)

Learn more about the tool on the project's [about page](http://domxssscanner.geeksta.net/info/about).

## Install

Clone this repository and download the [Google App Engine SDK for Python](https://cloud.google.com/appengine/downloads#Google_App_Engine_SDK_for_Python). Extract the SDK archive and add aliases for the dev server and update programs, for example:

alias gae_pyserver='python PATH_TO_SDK/google_appengine/dev_appserver.py'
alias gae_update='python PATH_TO_SDK/google_appengine/appcfg.py update'

Then start the dev server in the domxssscanner directory with the command:

gae_pyserver .

You can then access the application at `http://localhost:8080/`.