js-xss

HTML sanitizer

Sanitizes untrusted HTML to prevent cross-site scripting attacks by filtering input based on a whitelist of allowed tags and attributes.

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

GitHub
5k stars
118 watching
628 forks
Language: HTML
last commit: 12 months ago
Linked from 5 awesome lists


Screenshot of leizongmin/js-xss website

jsxss.com

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
microcosm-cc/bluemonday A fast and highly configurable HTML sanitizer that protects against cross-site scripting (XSS) attacks by scrubbing user-generated content against an allowlist of safe elements and attributes. 3,241
cure53/dompurify A DOM-only XSS sanitizer for HTML, MathML, and SVG 14,245
payloadbox/xss-payload-list A collection of scripts and payloads designed to exploit Cross-Site Scripting (XSS) vulnerabilities in web applications. 6,484
masatokinugawa/filterbypass Provides cheat sheets and guidance on bypassing browser XSS filters to inject malicious content into web pages 1,116
hahwul/dalfox Automates the process of identifying vulnerabilities in web applications by scanning for cross-site scripting (XSS) flaws and analyzing parameters. 3,820
hipotermia/vaya-ciego-nen Detects and exploits Blind Cross-site scripting (XSS) vulnerabilities to retrieve sensitive information and control user interactions. 41
laruence/taint A PHP extension that detects and warns about potential cross-site scripting (XSS) vulnerabilities in user input 610
bugbountyforum/xss-radar A tool designed to detect and exploit reflected cross-site scripting (XSS) vulnerabilities in web applications. 321
ssl/ezxss A tool for testing and exploiting Cross Site Scripting vulnerabilities in web applications 1,938
rantanen/eslint-plugin-xss Detects potential cross-site scripting vulnerabilities in JavaScript code to prevent XSS issues. 66
epsylon/xsser Automated tool to detect and exploit Cross Site Scripting (XSS) vulnerabilities in web applications 1,223
evilcos/xssor2 A tool designed to demonstrate cross-site scripting (XSS) vulnerabilities and exploits using JavaScript and Django. 2,141
graphql/graphql-playground A tool enabling real-time GraphQL development workflows with interactive documentation and collaboration features. 8,787
retirejs/retire.js Detects and reports vulnerabilities in JavaScript libraries used by web applications. 3,717
lewisardern/bxss A utility to identify Blind Cross-Site Scripting vulnerabilities 522