AwesomeXSS
Awesome XSS stuff (by s0md3v)
fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery. (by fuzzdb-project)
SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
surveyjs.io
featured
AwesomeXSS | fuzzdb | |
---|---|---|
2 | 4 | |
4,648 | 7,973 | |
- | 0.8% | |
2.7 | 0.0 | |
21 days ago | 6 months ago | |
JavaScript | PHP | |
MIT License | GNU General Public License v3.0 or later |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
AwesomeXSS
Posts with mentions or reviews of AwesomeXSS.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-11-15.
-
A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters
AwesomeXSS https://github.com/s0md3v/AwesomeXSS
-
Filter bypass
You don't need to use alert. You can try using confirm(). If the website is blocking javascript, you can try to capitalize some letters, something like jAvAscRiPt:confirm(1). You can check this repo, it's a gold mine of xss content.
fuzzdb
Posts with mentions or reviews of fuzzdb.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-11-15.
-
A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters
FuzzDB https://github.com/fuzzdb-project/fuzzdb
- Fuzzdb
-
Are there any resources to help me find external IP’s trying web app exploits?
fuzzdb
What are some alternatives?
When comparing AwesomeXSS and fuzzdb you can also consider the following projects:
OneListForAll - Rockyou for web fuzzing
xss-payload-list - 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
big-list-of-naughty-strings - The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
Open-Redirect-Payloads - Open Redirect Payloads
bugbounty-cheatsheet - A list of interesting payloads, tips and tricks for bug bounty hunters.
fuzz.txt - Potentially dangerous files
Bug-Bounty-Wordlists - A repository that includes all the important wordlists used while bug hunting.
WordList
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
AwesomeXSS vs OneListForAll
fuzzdb vs xss-payload-list
AwesomeXSS vs xss-payload-list
fuzzdb vs OneListForAll
AwesomeXSS vs big-list-of-naughty-strings
fuzzdb vs Open-Redirect-Payloads
AwesomeXSS vs bugbounty-cheatsheet
fuzzdb vs fuzz.txt
fuzzdb vs Bug-Bounty-Wordlists
fuzzdb vs bugbounty-cheatsheet
fuzzdb vs WordList
fuzzdb vs PayloadsAllTheThings