Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with xss-attacks

A curated list of projects in awesome lists tagged with xss-attacks .

https://github.com/ssl/ezxss

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

alert blind blind-xss bug bugbounty easy easy-to-use payload penetration-testing php redteam redteaming test xss xss-attacks xss-detection xss-exploitation xss-injection xss-scanner xss-vulnerability

Last synced: 14 May 2025

https://github.com/ssl/ezXSS

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

alert blind blind-xss bug bugbounty easy easy-to-use payload penetration-testing php redteam redteaming test xss xss-attacks xss-detection xss-exploitation xss-injection xss-scanner xss-vulnerability

Last synced: 02 Apr 2025

https://github.com/voku/anti-xss

㊙️ AntiXSS | Protection against Cross-site scripting (XSS) via PHP

composer hacktoberfest html-character php xss xss-attacks

Last synced: 13 May 2025

https://github.com/cagataycali/xss-listener

🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.

security-hardening security-tools xss xss-attacks xss-harvest xss-harvester

Last synced: 05 Apr 2025

https://github.com/varbaek/xsser

From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras

xss xss-attacks xss-exploitation xss-injection xss-poc

Last synced: 02 Apr 2025

https://github.com/Jewel591/xssmap

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

penetration-testing pentesting python3 sqlmap xss xss-attacks xss-detection xss-exploitation xss-scanner xss-vulnerability

Last synced: 02 Apr 2025

https://github.com/harismuneer/flight-booking-system-javaservlets_app

✈️ An MVP level Flight Booking System (web-application) based on the Model View Controller (MVC) Architecture made using Java Servlets, Java Server Pages (JSPs). Moreover authentication and authorization for users is implemented. The web-application is also secured against SQL Injection and Cross-Site Scripting attacks.

airlines-booking airlines-reservation-system ajax enterprise-applications flight-reservation-system java-server-pages java-servlets java-web-app mvc-architecture netbeans-project responsive-web-design security-roles soap-web-services sql-injection-attacks ticket-reservation-system tomcat-server web-application web-services xss-attacks xss-filter

Last synced: 16 May 2025

https://github.com/blackhatethicalhacking/XSSRocket

XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.

bugbounty cybersecurity hacking infosec offensive penetration-testing pentesting xss xss-attacks xss-detection xss-exploitation xss-scanner xss-vulnerability

Last synced: 18 Jul 2025

https://github.com/blackhatethicalhacking/xssrocket

XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.

bugbounty cybersecurity hacking infosec offensive penetration-testing pentesting xss xss-attacks xss-detection xss-exploitation xss-scanner xss-vulnerability

Last synced: 14 Jul 2025

https://github.com/techguy-bhushan/xssrequestfilters

Light weight library for Filter the Cross-site scripting in request For Spring Framwork / Spring-Boot, logic can be use for servlet based(without using spring framework) application

spring-boot spring-mvc spring-rest xss xss-attacks xss-filter xss-scanners xss-vulnerability

Last synced: 29 Oct 2025

https://github.com/redcode-labs/poxsson

A framework for easy payloads development and deployment, collection of customizable XSS payloads

python tool xss xss-attacks xss-exploitation

Last synced: 09 Apr 2025

https://github.com/paulveillard/cybersecurity-web-security

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Web Security in Cybersecurity.

cyber-threat-intelligence cybersecurity-assessments ddos ddos-attacks security-tools services sql-injection web website xss-attacks xss-detection xss-scanner xss-vulnerability

Last synced: 07 Jan 2026

https://github.com/etherdream/xss_ghost

XSS 跨窗口劫持

cross-origin javascript xss-attacks

Last synced: 24 Apr 2025

https://github.com/bararchy/ruby-ann-webattack-filtering

A project to filter SQL Injection and XSS attacks using ANN -- in Ruby

ann artifical-neural-network cybersecurity filter-sql-injection machine-learning ruby sqli xss xss-attacks

Last synced: 12 May 2025

https://github.com/dhanushnehru/pdf-xss-checker

pdf-xss-checker is a Node.js tool designed to scan PDF files for potential Cross-Site Scripting (XSS) vulnerabilities. It analyzes embedded scripts, forms and suspicious content to help identify security risks in PDFs before they're distributed or displayed in browsers.

pdf pdf-document scanner security security-audit securitytools vulnerability xss xss-attacks xss-detection xss-filter xss-scanner xss-vulnerability

Last synced: 19 Jun 2025

https://github.com/inforkgodara/xss-vulnerability

Explanation of Cross-site Scripting (XSS) with PHP mini project.

cookie cookie-hijack cross-site cross-site-scripting php xss-attacks xss-vulnerability

Last synced: 12 Jun 2025

https://github.com/louis3797/xss-shield

A powerful middleware for securing your express.js applications against cross-site scripting (XSS) attacks

express-middleware middleware node security typescript xss xss-attacks xss-filter xss-sanitizer xss-shield

Last synced: 07 Apr 2025

https://github.com/volkansah/sqlp-edu

Example Python script that demonstrates a simple example of a Cross-Site Scripting (XSS) exploit for educational purposes only. This script is intended to be used responsibly, for learning and understanding the security implications of XSS attacks, and should not be used for any illegal or unethical activities.

bypass cross-site-scripting ehtical-hacking-tools exploit exploitation explotation hacking hacking-tool hacking-tools penetration-testing pentesting phishing python security sql-xss vulnerability xss xss-attacks xss-exploitation xss-injection

Last synced: 11 Jul 2025

https://github.com/fear2o/h4ckweb

H4ckWeb is a powerful, advanced tool designed for testing web vulnerabilities, including SQL injection and Cross-Site Scripting (XSS). Built with both beginners and advanced users in mind, H4ckWeb allows security professionals and ethical hackers to quickly identify and exploit common web application flaws.

hacking hacking-tool hacking-tools online python python3 sql xss xss-attacks xss-detection xss-exploitation xss-vulnerability

Last synced: 18 Aug 2025

https://github.com/gordonzhang2024/xss-shield

A Python library to prevent your website from being attacked

python python-3 python-package python3 security web xss xss-attacks xss-scanner

Last synced: 24 Apr 2025

https://github.com/basemax/githubvulnerabilityxss

Archive of my experiments related to checking the security of GitHub and XSS vulnerability.

github github-xss xss xss-attacks xss-github xss-injection xss-vulnerability

Last synced: 24 Apr 2026

https://github.com/fear2o/scanshield

ScanShield is an advanced vulnerability scanner built to identify common web security flaws such as SQL Injection, XSS, LFI, RFI, directory listing issues, and security header misconfigurations.

ethical-hacking hacking hacking-tool lfi-detection lfi-exploit lfi-exploitation lfi-vulnerability python python3 sql vulnerabilities vulnerability vulnerability-detection vulnerability-scanners xss xss-attacks xss-detection xss-exploitation xss-vulnerability

Last synced: 23 Apr 2025

https://github.com/blackvoidx/Blind-XSS

Code to detect Blind XSS vulnerabilities and send notifications to Discord.

blind-xss discord php php-curl xss xss-attacks xss-detection xss-vulnerability

Last synced: 22 Oct 2025

https://github.com/kaanaktas/go-slm

policy-based service level management library that enforces policy requirements

concurrency go gorutines owasp owasp-crs-core-rule-set sql-injection-attacks xss-attacks

Last synced: 20 Mar 2025

https://github.com/vheidari/wpxssmaker

A online wordpress xss maker , only wordpress version 3.xx

hack wordpress xss xss-attacks xss-exploitation xss-injection xss-vulnerability

Last synced: 01 Apr 2025

https://github.com/blackvoidx/blind-xss

Code to detect Blind XSS vulnerabilities and send notifications to Discord.

blind-xss discord php php-curl xss xss-attacks xss-detection xss-vulnerability

Last synced: 24 Apr 2026

https://github.com/hackfutsec/xssdump

**XssDump** is a Python-based XSS (Cross-Site Scripting) vulnerability scanner designed to test web applications for potential XSS vulnerabilities. The script performs automated testing by injecting payloads into URLs and analyzing HTTP responses to check for the presence of malicious scripts.

cybersecurity hacking payloads payloadsallthethings python xss xss-attacks xss-detection xss-exploitation xss-vulnerability

Last synced: 12 May 2026

https://github.com/thayeeb9211/ortho-secure

Orthosecure: Secure Dentistry Appointment Booking and Management System. It is designed to be robust and secure application with enhanced security and compliance checks within containerized environments. It leverages cutting-edge technologies to monitor, analyze, and secure workloads in real-time.

cicd csrf-attacks ddos-attacks devsecops docker-compose docker-image gitlab security xss-attacks xss-vulnerability

Last synced: 28 Feb 2026

https://github.com/asmroyal/hydra

Hydra XSS Injector for every website (bypasses cloudflare blacklist)

xss xss-attacks xss-detection xss-exploitation xss-vulnerability

Last synced: 25 Jan 2026

https://github.com/povzayd/xss-labs

This is an intentionally vuln webpage designed to practice XSS.

webpentesting xss xss-attacks xss-exploitation xss-injection xss-poc xss-vulnerability

Last synced: 11 Feb 2026

https://github.com/glenncai/seedlab

Software Security (Buffer Overflow) and Web Security (Cross-Site Scripting Attack)

buffer-overflow-attack seedlab xss-attacks

Last synced: 04 Feb 2026

https://github.com/garretfick/xss-by-example

Demonstration of how to create an XSS attach

example learning xss-attacks

Last synced: 21 Jul 2025

https://github.com/alekrish-12/dvwa-k8s-setup

DVWA Setup to Deploy a local k8s cluster using minikube, k3s and demo of the attack vectors.

deployment dvwa kubectl kubernetes minikube service setup-script sql-injection xss-attacks yaml

Last synced: 05 Jan 2026

https://github.com/0xh4ty/jamxss

JAMXSS (Just A Monster XSS Scanner) is a state-of-the-art tool designed to test for reflected XSS (Cross-Site Scripting) vulnerabilities in web applications. By leveraging machine learning, JAMXSS offers an innovative approach to detecting and mitigating security risks with exceptional accuracy and efficiency.

ai-xss-scanner ml-powered-xss-scanner ml-xss-scanner reflected-xss reflected-xss-vulnerabilities xss-attacks xss-detection xss-exploitation xss-injection xss-scanner xss-vulnerability

Last synced: 05 Apr 2025

https://github.com/lucianoscarpaci/pen-testing-live-targets

Immerse yourself in a practical hacking exercise to gain valuable experience with prevalent security exploits. Explore six key vulnerabilities, including SQL injection, session hijacking, username enumeration, IDOR, XSS, and CSRF, for a comprehensive cybersecurity learning experience.

csrf-attacks cybersecurity ethical-hacking idor-attack penetration-testing practical-hacking-framework session-hijacking sqli-injection username-enumeration vulnerability-assessment web-application-security xss-attacks

Last synced: 28 Jan 2026

https://github.com/ero-hack/bypassxss

A curated collection of advanced XSS bypass techniques, including WAF evasions, framework-specific payloads, and real-world bug bounty cases.

bugbounty bypass dork erohack xss xss-attacks xss-bypass xss-dorks

Last synced: 08 Feb 2026