Repositorio donde alojo información relevante acerca de las vulnerabilidades más conocidas.
-
Updated
May 23, 2024
Repositorio donde alojo información relevante acerca de las vulnerabilidades más conocidas.
一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术,作为反向代理接入,保护你的网站不受黑客攻击。 A free WAF that is sufficiently simple, effective, and powerful. Utilizing industry-leading semantic engine detection technology, it operates as a reverse proxy to protect your website from hacker attacks.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
💎 Isomorphic html sanitizer by DOMPurify + sanitize-html
🛡 Automatically configure your app to follow OWASP security patterns and principles by using HTTP Headers and Middleware
Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:
Use DOMPurify on server and client in the same way
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
This is a collection of commands that's help you to find XSS via automation.
Tool for finding CVE-2021-42063
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
㊙️ AntiXSS | Protection against Cross-site scripting (XSS) via PHP
Add a description, image, and links to the xss topic page so that developers can more easily learn about it.
To associate your repository with the xss topic, visit your repo's landing page and select "manage topics."