mirror of
https://github.com/nettitude/xss_payloads.git
synced 2024-11-10 06:34:14 +00:00
Also hex escapes, why not
This commit is contained in:
parent
1562f11801
commit
893d1e1898
1 changed files with 10 additions and 1 deletions
|
@ -398,10 +398,16 @@
|
||||||
],
|
],
|
||||||
[
|
[
|
||||||
"name"=>"JS Unicode",
|
"name"=>"JS Unicode",
|
||||||
"desc"=>"Encode as unicode escaped string",
|
"desc"=>"Encode as JavaScript unicode escaped string",
|
||||||
"func"=>"unicode_escape",
|
"func"=>"unicode_escape",
|
||||||
"args"=>['[payload]']
|
"args"=>['[payload]']
|
||||||
],
|
],
|
||||||
|
[
|
||||||
|
"name"=>"JS Hex",
|
||||||
|
"desc"=>"Encode as JavaScript hex escaped string",
|
||||||
|
"func"=>"hex_escape",
|
||||||
|
"args"=>['[payload]']
|
||||||
|
],
|
||||||
[
|
[
|
||||||
"name"=>"URL",
|
"name"=>"URL",
|
||||||
"desc"=>"URL encode key characters",
|
"desc"=>"URL encode key characters",
|
||||||
|
@ -435,6 +441,9 @@
|
||||||
}
|
}
|
||||||
return $rtn;
|
return $rtn;
|
||||||
}
|
}
|
||||||
|
function hex_escape( $payload ){
|
||||||
|
return str_replace( '\\u00','\\x',unicode_escape( $payload ) );
|
||||||
|
}
|
||||||
|
|
||||||
// JSFuck: http://www.jsfuck.com/
|
// JSFuck: http://www.jsfuck.com/
|
||||||
// JSFuck PHP port: https://github.com/Zaczero/jsfuck.php
|
// JSFuck PHP port: https://github.com/Zaczero/jsfuck.php
|
||||||
|
|
Loading…
Reference in a new issue