XSS payloads to bypass various XSS filters
☆14May 1, 2019Updated 7 years ago
Alternatives and similar repositories for XSS-Filter-Evasion
Users that are interested in XSS-Filter-Evasion are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is my custom wordlist for WiFi passwords, tailored specifically for WiFi networks in Indonesia.☆22Nov 29, 2025Updated 6 months ago
- Proof of Concept Exploit for CVE-2024-9465☆31Oct 9, 2024Updated last year
- Lots of POC Codes & Preparation materials, scripts, discovery processes in there.☆16Feb 8, 2024Updated 2 years ago
- 「🧱」Test a list of payloads and see if you can bypass it☆64Jun 4, 2022Updated 4 years ago
- CVE-2023-33381: OS command injection on MitraStar GPT-2741GNAC☆13Jun 1, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆20Dec 6, 2022Updated 3 years ago
- Tools and resources for web app hacking. The payloads.txt documents are a must have for your Burpsuite intruder payload armory. They've h…☆28Jun 10, 2019Updated 6 years ago
- ☆11Aug 6, 2019Updated 6 years ago
- 「🐞」Bug Bounty Tricks☆39Oct 4, 2023Updated 2 years ago
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆62Nov 17, 2023Updated 2 years ago
- A repository of wordlists for enumeration. Will be added to by my tools when they find interesting new entries☆23Jan 21, 2021Updated 5 years ago
- ☆22Jul 13, 2022Updated 3 years ago
- Cross-Site Scripting (XSS) is one of the most well known web application vulnerabilities. It even has a dedicated chapter in the OWASP To…☆12Jan 30, 2023Updated 3 years ago
- Havoc C2 BOF port of the KslD.sys BYOVD technique. Credential extraction from lsass via physical memory — no OpenProcess, no auditable AP…☆109Apr 22, 2026Updated last month
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆33Jul 20, 2021Updated 4 years ago
- ResFi - a framework supporting creation of RRM functionality in residential WiFi deployments.☆10Jun 1, 2017Updated 9 years ago
- A Web Application Penetration Testing Framework build in React with an Node/Express/MongoDB back-end☆25Mar 7, 2023Updated 3 years ago
- Indeed API Javascript Client Library☆21Nov 24, 2014Updated 11 years ago
- Official JavaScript SDK for the IPGeolocation.io IP Location API with single and bulk lookup, typed JSON, and raw JSON/XML support.☆22Apr 6, 2026Updated 2 months ago
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- 802.11 radiotap and MPDU parser☆14Nov 23, 2017Updated 8 years ago
- GetSimple CMS Custom JS Plugin Exploit RCE Chain☆11Mar 8, 2023Updated 3 years ago
- A powerful URL parameter and request fuzzing tool that processes URLs or Burp Suite raw requests, replacing values with custom payloads w…☆21Apr 12, 2026Updated last month
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- burp extender for fuzzing☆10Aug 10, 2018Updated 7 years ago
- A CLI utility to scan S3 buckets permissions☆14May 14, 2023Updated 3 years ago
- E-mails, subdomains and names Harvester - OSINT☆11Jan 17, 2020Updated 6 years ago
- Modern network analyze tool. Alternatives to Hoxy, Charles, etc.☆18Jan 6, 2023Updated 3 years ago
- Repository of wordlists and dictionaries for fuzzing and bruteforcing☆10Aug 17, 2020Updated 5 years ago
- Sublime Text plugin to run eslint --fix on the current file☆10Mar 21, 2024Updated 2 years ago
- An another JWT cracker but really fast!☆12Jan 26, 2023Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆109Mar 1, 2022Updated 4 years ago
- Multi-threaded URL enumeration/content-discovery tool in Python.☆107Feb 15, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Automatically exported from code.google.com/p/unix-security-file-parser☆34Dec 21, 2015Updated 10 years ago
- ☆10Apr 2, 2022Updated 4 years ago
- ☆16Apr 14, 2020Updated 6 years ago
- Fake SMB and SAMR data☆11Oct 27, 2019Updated 6 years ago
- API Security University & PortSwigger Academy Study Notes☆25Nov 13, 2025Updated 6 months ago
- Repo for hosting various scripts for creating users for password spraying and other password attacks.☆11Jul 9, 2020Updated 5 years ago
- ☆11Apr 21, 2022Updated 4 years ago