fuzzdb/attack/xss
2016-03-08 21:08:49 -05:00
..
all-encodings-of-lt.fuzz.txt doc relocation and renaming update 2015-09-11 19:39:11 -04:00
default-javascript-event-attributes.fuzz.txt doc relocation and renaming update 2015-09-11 19:39:11 -04:00
README.md Update README.md 2016-03-08 21:08:24 -05:00
test.xxe Test file 2016-03-07 19:24:21 -05:00
xss-other.fuzz.txt Update xss-other.fuzz.txt 2016-03-08 00:50:55 -05:00
xss-rsnake.fuzz.txt update ha.ckers.org links xss.rocks 2016-03-07 19:34:01 -05:00
xss-uri.fuzz.txt Update xss-uri.fuzz.txt 2016-03-08 21:08:49 -05:00
XSSPolyglot.fuzz.txt Oxsobky polyglot payloads from https://github.com/0xsobky/HackVault/wiki/ 2016-03-08 21:07:26 -05:00

test.xxe - requested by some payloads from fuzzdb github repo raw filepath
xss-rsnake.fuzz.txt - rsnake's classic fuzzfile, modified to load http://xss.rocks test files
xss-other.fuzz.txt - newer payloads from various sources: my own testing, interesting filter bypassed found in the wild, etc.
xss-uri.fuzz.txt - URI abuse test cases
XSSPolyglot.fuzz.txt - from https://github.com/0xsobky/HackVault/wiki/Unleashing-an-Ultimate-XSS-Polyglot - check the page for filter evasions and other interesting stuff

HTML5 Cheatsheet


WASC Script Mapping Project