Presentation with reveal.js about xss

Some Shell Scripts for System Exploitation

Introductory of cross-site scripting attack

CVE-2019-1332: Reflected Cross-Site Scripting in Microsoft SQL Server Reporting Services

PoC for CVE-2023-2579

Google Chrome extension to detect and prevent Reflected XSS via special crafted URLs

Use HtmlAgilityPack parser to sanitize html text against unrecognized tags and attributes.

Express with XSS in environment variable

XSS Carnival: A captivating XSS world by Overweight Clown (Maviya). Learn, experiment, and secure the web with educational resources and tools.

WSO2-2020-0731: XXE and XSS vulnerabilities in WSO2 Carbon

Implementing best practices and adding layers of security to protect the 'Restreview app' from DOM-Based, Reflected, and Stored XSS Attacks. Using helmet and express-validator and other alternative methods from the document object to prevent any potential attacks on the application.

CVE-2020-12625: Cross-Site Scripting via Malicious HTML Attachment in Roundcube Webmail

This is a project involving the setting up a penetration testing environment using Kali Linux and Metasploitable2 to practice and exploit common vulnerabilities such as SQL Injection, Command Injection, and Cross-Site Scripting (XSS). Tools used include Nmap, BurpSuite, and SQLmap.

Documentos que use al aprender XSS.

My solution to the assignments of *CSE406: Computer Security Sessional*.

Node.js HTTP CORS middleware.

Demo using my Anti-forgery Middleware

CVE-2020-13965: Cross-Site Scripting via Malicious XML Attachment in Roundcube Webmail

Example Python script that demonstrates a simple example of a Cross-Site Scripting (XSS) exploit for educational purposes only. This script is intended to be used responsibly, for learning and understanding the security implications of XSS attacks, and should not be used for any illegal or unethical activities.