Open Redirection Analyzer
-
Updated
Mar 5, 2023 - Python
#
dom-xss
Here are 15 public repositories matching this topic...
OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
-
Updated
Jun 7, 2020 - Python
XSSB is a proactive DOM sanitizer, defending against client-side injection attacks!
-
Updated
Aug 26, 2018 - JavaScript
Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰
security scanner xss bug-bounty pentest dom-xss web-application-security pentest-tool web-application-security-scanner
-
Updated
Feb 27, 2024 - Shell
DOM-based XSS flaw where location.search is injected into the page via innerHTML, letting us execute arbitrary JavaScript.
-
Updated
Dec 12, 2025
DOM-based XSS where location.search is written into the page via innerHTML, letting us inject HTML and trigger alert(1) using an SVG onload payload.
-
Updated
Dec 4, 2025
DOM XSS in jQuery anchor href attribute sink using location.search source
-
Updated
Dec 12, 2025
Discovering the JavaScript parameters for dom-xss
-
Updated
Jan 27, 2024 - Python
Ultimate DOM Clobbering Cheat Sheet - 100+ exploitation vectors for XSS, CSP bypass, and client-side attacks. Covers browser compatibility, framework evasion, and real-world exploit chains for security researchers and bug bounty hunters
ssr hacking xss owasp cheatsheet penetration-testing web-security ctf bugbounty dom-xss offensive-security ethical-hacking htb hackthebox browser-exploitation dom-clobbering csp-bypass dom-hacking hydration-react dom-clobbering-cheatsheet
-
Updated
Dec 2, 2025
Firefox extension that detects reflected strings or regex patterns in the live DOM of web pages
-
Updated
Dec 16, 2025 - JavaScript
Advanced Cross-Site Scripting (XSS) vulnerability testing framework with WAF bypass, DOM XSS detection, and comprehensive reporting capabilities.
xss owasp cybersecurity penetration-testing bug-bounty web-security xss-detection dom-xss python-security security-scanner ethical-hacking security-automation security-tools web-application-security vulnerability-scanner cross-site-scripting hacking-tools waf-bypass stored-xss reflected-xss
-
Updated
Mar 15, 2025 - Python
This is a script to exploit DOM XSS in jQuery anchor href attribute sink using location.search source in the PortSwigger Web Security Lab.
-
Updated
Jul 24, 2023 - Python
Improve this page
Add a description, image, and links to the dom-xss topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the dom-xss topic, visit your repo's landing page and select "manage topics."