payloadbox / xss-payload-listLinks
π― Cross Site Scripting ( XSS ) Vulnerability Payload List
β7,453Updated last year
Alternatives and similar repositories for xss-payload-list
Users that are interested in xss-payload-list are comparing it to the libraries listed below
Sorting:
- π― Command Injection Payload Listβ3,475Updated last year
- π― SQL Injection Payload Listβ5,741Updated last year
- A list of interesting payloads, tips and tricks for bug bounty hunters.β6,236Updated last year
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ6,049Updated 3 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies andβ¦β3,840Updated 3 years ago
- β2,518Updated last year
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-referenceβ5,292Updated 2 years ago
- Scripted Local Linux Enumeration & Privilege Escalation Checksβ7,553Updated last year
- Web application fuzzerβ6,260Updated last year
- HTTP parameter discovery suite.β5,826Updated 6 months ago
- Linux privilege escalation auditing toolβ6,142Updated last year
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.β5,656Updated 3 months ago
- Awesome XSS stuffβ4,959Updated 9 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.β8,659Updated last year
- An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!β2,014Updated last year
- Top disclosed reports from HackerOneβ4,791Updated last week
- A curated list of amazingly awesome Burp Extensionsβ3,271Updated 6 months ago
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,486Updated this week
- A python script that finds endpoints in JavaScript filesβ4,089Updated last year
- Linux enumeration tool for pentesting and CTFs with verbosity levelsβ3,712Updated last year
- Automated All-in-One OS Command Injection Exploitation Tool.β5,406Updated this week
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,317Updated 6 months ago
- Git All the Payloads! A collection of web attack payloads.β3,819Updated 2 years ago
- Penetration tests guide based on OWASP including test cases, resources and examples.β2,660Updated 3 years ago
- A cheat sheet that contains advanced queries for SQL Injection of all types.β3,035Updated 2 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.β5,827Updated 7 months ago
- A script that you can run in the background!β2,890Updated last year
- A curated list of various bug bounty toolsβ5,258Updated last week
- This repository holds all the list of advanced XSS payloads that can be used in penetration testing. These payloads can be loaded into XSβ¦β1,081Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β5,675Updated last year