Commit graph

23 commits

Author SHA1 Message Date
Adam Muntner
df5fd2e3ef Strings which contain Emoji; should be the same behavior as two-byte characters, but not always
from minimaxir/big-list-of-naughty-strings
2017-01-16 12:26:04 -05:00
Adam Muntner
9ddc02dcb8 Strings which consists of Japanese-style emoticons
from minimaxir/big-list-of-naughty-strings
2017-01-16 12:22:46 -05:00
Adam Muntner
594f0894b4 Strings which contain two-byte characters: can cause rendering issues or character-length issues
minimaxir/big-list-of-naughty-strings
2017-01-16 12:21:34 -05:00
Adam Muntner
9deeda4647 Strings which contain misplaced quotation marks; can cause encoding errors
from minimaxir/big-list-of-naughty-strings
2017-01-16 12:20:21 -05:00
Adam Muntner
855a9d38de Strings which contain common special ASCII characters (may need to be escaped)
from minimaxir/big-list-of-naughty-string
2017-01-16 12:13:32 -05:00
Adam Muntner
fa3e68b231 Merge pull request #155 from elnerd/patch-3
Patch 3 - added h2-h6 tags
2017-01-15 15:23:14 -05:00
leikarne
09426f15e6 updated data-* attribute
data-* can be anything.
renamed it to data-userdefined-attribute, as it can be anything
2016-09-14 18:24:36 +02:00
leikarne
45fcb70f1c Update html_tags.txt 2016-09-14 09:32:22 +02:00
leikarne
6ef11b686e Update html_tags.txt 2016-09-14 09:30:50 +02:00
leikarne
bf03a0b11d Merged with my personal html tag library
Some new tags
2016-09-14 09:29:42 +02:00
leikarne
7c1d6972f5 Create html_attributes.txt
List of standard html attributes that are allowed inside html tags
2016-09-14 09:25:38 +02:00
Adam Muntner
9825554871 Adding newer html5 tags that were missing 2016-09-13 18:26:43 -04:00
leikarne
cb7b69a789 Removed crocodiles
When fuzzing for allowed html tags, some libraries such as OWASP AntiSamy will require a matching closing tag.
Removing the crocodiles from the html tags, it allow you to do the following: <$POS$></$POS$>, and you can use this file to fuzz for valid html tags, and still provide valid html at the same time.
2016-09-13 23:52:20 +02:00
Ricardo Madriz
2863f7a588 Fix #144 2016-05-25 17:56:24 -06:00
Ricardo Madriz
f7aa901576 Fix #144 2016-05-25 17:55:49 -06:00
Adam Muntner
8690869ae3 Create js_inject.fuzz.txt 2016-03-09 16:14:03 -05:00
Adam Muntner
e98b4902b9 filename 2016-03-09 16:13:08 -05:00
Adam Muntner
74bc4bb22f filename 2016-03-09 16:12:49 -05:00
Adam Muntner
477cc62448 Update HTML5sec_Injections.fuzz.txt 2016-03-09 15:58:05 -05:00
Adam Muntner
ff9d29818c fix filename 2016-03-09 15:49:49 -05:00
Adam Muntner
474313e581 Adding more payloads 2016-03-09 15:49:22 -05:00
Adam Muntner
e190c9433c From Paweł Krawczyk (https://github.com/kravietz/text-jso) and http://heideri.ch/jso/ 2016-03-07 19:15:51 -05:00
Adam Muntner
a58bdb659d doc relocation and renaming update 2015-09-11 19:39:11 -04:00