本项目是一个以“实战为导向”的 XSS 漏洞练习靶场,覆盖反射型、存储型、DOM 型、SVG、CSP、框架注入、协议绕过等多种场景。页面样式统一,逻辑清晰,适合系统化学习与教学演示
☆25Mar 6, 2026Updated 2 weeks ago
Alternatives and similar repositories for XSS-Sec
Users that are interested in XSS-Sec are comparing it to the libraries listed below
Sorting:
- 一个用于暴力破解猫变换(Arnold's Cat Map)加密图像的命令行工具。☆26Dec 21, 2025Updated 2 months ago
- 通达OA OfficeTask udp 2397 端口远程代码执行RCE检测工具☆21Jun 13, 2025Updated 9 months ago
- NovelAI☆13Feb 4, 2023Updated 3 years ago
- 🌟 基于Microsoft Edge WebView2的Go语言界面开发包,提供简单易用的API接口。☆17Feb 25, 2025Updated last year
- This vulnerability could allow an attacker to take complete control of a vulnerable Confluence server. This could allow the attacker to s…☆11May 24, 2024Updated last year
- 用于练习xhr逆向的靶场☆19Jul 27, 2025Updated 7 months ago
- 红队自动化打点神器!!! ARL使用代理池联动nuclei,xray并通过企业微信机器人告警。☆26Sep 29, 2024Updated last year
- Md5 碰撞生成实现,去掉了boost依赖,简化编译☆12Jan 25, 2018Updated 8 years ago
- 一款为 MaixPy 开发的轻量级 UI 组件库 | A lightweight UI component library for MaixPy☆25Jul 29, 2025Updated 7 months ago
- Onyx 是一款安全测试工具集,集合多种渗透测试常用的功能和工具,赋能攻防、渗透等场景。整合空间测绘、漏洞扫描、主机探测、信息收集、小程序反编译等能力,提供一站式的渗透测试工作台,告别需要到处切换工具、网站的麻烦☆89Jan 25, 2026Updated last month
- 大华智慧园区系统sso_initsession文件上传批量脚本☆21Sep 4, 2023Updated 2 years ago
- ☆18Aug 25, 2022Updated 3 years ago
- PHP漏洞靶场,涉及OWASP TOP10漏洞,新手必学!☆12Jun 13, 2022Updated 3 years ago
- 瞎测,主要针对iot设备,路由器、网关、防火墙的常规命令执行、溢出测试☆27Apr 19, 2025Updated 11 months ago
- 通过Dump提取向日葵、todesk连接id,临时密码、安全密码以及软件config.ini配置文件☆17Nov 28, 2024Updated last year
- ☆16May 17, 2024Updated last year
- 一款ctf工具,包含rsa模板解密,misc方向功能,一些解码功能,致力于帮助ctf比赛中减少繁琐步骤,快速解答模板题☆15Mar 18, 2025Updated last year
- 微信公众号安全漏洞文章链接聚合☆28Updated this week
- 一个高速的隐蔽隧道,伪装TCP流量为SMTP电子邮件通信以绕过深度包检测(DPI)防火墙。☆47Feb 23, 2026Updated 3 weeks ago
- 基于alpine+php7.3的一个RCE命令执行靶场,包含基础命令、shell 特性、常见姿势、常见waf绕过☆55Nov 18, 2025Updated 4 months ago
- Yscan 是一款集 Web 资产扫描、图形化 Nuclei POC 管理、漏洞验证与数据整理于一体的实战型安全工具,界面简洁,功能强大,助你快速识别互联网暴露面中的薄弱点与攻击面。☆101Jan 13, 2026Updated 2 months ago
- Start4burp is a burpsuit plugin☆20Sep 18, 2024Updated last year
- 这个人很懒什么也不想说☆29Jul 11, 2025Updated 8 months ago
- 自动生成nuclei 2025HW poc☆125Jul 25, 2025Updated 7 months ago
- ☆13Nov 7, 2023Updated 2 years ago
- CVE-2025-54424:1Panel 客户端�证书绕过RCE漏洞 一体化工具 (扫描+利用)☆57Aug 5, 2025Updated 7 months ago
- A tool to initialize pwn game exploit enviroment.☆44Nov 27, 2025Updated 3 months ago
- A command-line tool for testing RocketMQ vulnerabilities.☆13Feb 7, 2025Updated last year
- ☆34Aug 28, 2023Updated 2 years ago
- 海康威视iSecure后渗透☆31Aug 13, 2024Updated last year
- Md5碰撞生成器☆23Dec 8, 2019Updated 6 years ago
- Matu7 渗透测试工具箱-(不含工具)☆14Jul 31, 2025Updated 7 months ago
- 留个档,为啥许少要删了它呢,互联网可不会忘记☆14Jul 19, 2022Updated 3 years ago
- 帮助红队收集目标企业员工的邮箱信息,借助必应搜索引擎爬取邮箱。☆25Apr 26, 2022Updated 3 years ago
- 鉴穹日志安全分析系统☆18Sep 7, 2025Updated 6 months ago
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- ☆19Jul 15, 2024Updated last year
- 哔哩哔哩,扫码登录获取access_key及cookies,并实现持久化登录☆39Aug 4, 2024Updated last year
- A tool for rapid network security operations, facilitating swift asset discovery. It builds an asset library, aiding security teams in ef…☆16Feb 13, 2026Updated last month