SVG, XML, GIF and PDF files that result in finding XSS reports on websites : The payloads are available for testing purpose only.
☆17Apr 17, 2023Updated 3 years ago
Alternatives and similar repositories for XSS-Payloads
Users that are interested in XSS-Payloads are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Java Chains 插件编写 demo☆15Mar 5, 2025Updated last year
- 一款信息泄漏利用工具,适用于.git/.svn/.DS_Store泄漏和目录列出(dumpall Golang重构版)☆20Apr 8, 2025Updated last year
- SigFlip与白加黑的完美结合。☆44May 19, 2025Updated last year
- 智云-一个抓取web流量的轻量级蜜罐☆35Apr 8, 2025Updated last year
- Fastjson + MySQL 条件下不出网利用测试环境☆50Dec 6, 2025Updated 6 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Subdomain finder☆10Mar 13, 2025Updated last year
- Application Security Mind Maps☆12Apr 10, 2021Updated 5 years ago
- Modify DNS resolution rules in BurpSuite ,为一款可以修改burpsuite中hosts配置 的插件☆10Sep 14, 2023Updated 2 years ago
- 一款功能强大的Docker Registry 5000端口未授权浏览、下载和安全测试工具��,集成了镜像管理、认证爆破、敏感信息搜索等多项实用功能。☆36May 8, 2026Updated last month
- pdf svg xss payload☆138Nov 1, 2025Updated 7 months ago
- ☆20Jan 12, 2022Updated 4 years ago
- EwoMail是基于Linux的企业邮箱服务器,集成了众多优秀稳定的组件,是一个快速部署、简单高效、多语言、安全稳定的邮件解决方案☆13Nov 25, 2022Updated 3 years ago
- 移动端App安全测试MCP工具集 - 基于ADB、aapt、JADX的完整移动应用安全分析平台☆62Mar 4, 2026Updated 3 months ago
- ☆13Jun 15, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- AppXSVC Service race condition - privilege escalation☆29Jul 30, 2019Updated 6 years ago
- 一个基于Codeql规则的go靶场☆41Feb 19, 2025Updated last year
- 利用阿里的云函数发送电子邮件☆22Dec 20, 2021Updated 4 years ago
- Simple PoC package for testing for dependency confusion vulnerabilities.☆10Feb 9, 2021Updated 5 years ago
- Allocate managed objects in a object pool, backed by native memory buffer.☆27Feb 23, 2017Updated 9 years ago
- 密码生成工具、password maker、password generator☆15Apr 20, 2024Updated 2 years ago
- ARL使用代理池联动nuclei,xray通过企业微信机器人告警☆10Oct 28, 2022Updated 3 years ago
- Linux下进程隐藏检测与定位工具☆17Nov 2, 2024Updated last year
- 内网综合扫描工具☆44Apr 16, 2024Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- tryhackme writeups☆13Jun 28, 2020Updated 5 years ago
- rust port of pspy with support for process monitoring over dbus☆38Jan 4, 2026Updated 5 months ago
- POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability.☆17Jun 18, 2025Updated 11 months ago
- nuclei + .yaml = poc☆14Oct 16, 2023Updated 2 years ago
- 基于 Vue + SpringBoot 构建的前后端分离的 Java 安全靶场。☆16Updated this week
- 利用代理驱动绕过JDBC Attack检测☆145Jun 15, 2025Updated 11 months ago
- bchecks for burpsuite☆15Oct 9, 2023Updated 2 years ago
- Whale-ApiUse是burp插件,可以用来测试wx公众号,微信小程序,钉钉,企业微信等的接口,通过输入key和secret进行测试,之所以做这个首先这是一个练手项目,后续也会继续维护更新,如果有好的建议欢迎留言。其次由于现有的工具都要额外下载,用起来繁琐,所以我想着通…☆14Jan 7, 2024Updated 2 years ago
- This tool is intended to be used for on target enumeration to gather and exfiltrate information and then to upload tools such as netcat o…☆23Jan 6, 2026Updated 5 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 一款被动扫描ssrf的burpsuite插件☆20Dec 30, 2022Updated 3 years ago
- 用于快速启�动tabby 分析漏洞或者gadget的环境☆94Jul 14, 2025Updated 10 months ago
- A basic shopping app design built using Flutter.☆27Jun 30, 2018Updated 7 years ago
- PoC - Authenticated Remote Code Execution in VMware vCenter Server (Exploit)☆46Jul 16, 2024Updated last year
- burpsuite插件captcha-killer的ddddocr的web接口☆15Nov 22, 2021Updated 4 years ago
- JAVA 安全靶场,IAST 测试用例,JAVA漏洞复现,代码审计,SAST测试用例,安全扫描(主动和被动),JAVA漏洞靶场,RASP测试用例 ; Java Security Testbed, IAST Test Cases, Java Vulnerability R…☆288Apr 29, 2026Updated last month
- pocframe是一个基于python3的开源批量POC检测框架,默认使用协程异步请求,支持多线程并发,支持多种指定目标方式,可用于批量POC检测,也可根据需要扩展功能。☆13Mar 20, 2021Updated 5 years ago