A Web application firewall to monitor, analyze and block traffic, built with Python
-
Updated
May 24, 2024 - Python
A Web application firewall to monitor, analyze and block traffic, built with Python
一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术,作为反向代理接入,保护你的网站不受黑客攻击。 A free WAF that is sufficiently simple, effective, and powerful. Utilizing industry-leading semantic engine detection technology, it operates as a reverse proxy to protect your website from hacker attacks.
☕ Latte: the safest & truly intuitive templates for PHP. Engine for those who want the most secure PHP sites.
Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.
Repositorio donde alojo información relevante acerca de las vulnerabilidades más conocidas.
Java web and command line applications demonstrating various security topics
[V2] This will help you setup a grabber with the following features: History, Passwords, Tokens, Cookies, Emails, IP Adresses, Roblox Login Information, Windows Keys, Computer Information.
This is a project involving the setting up a penetration testing environment using Kali Linux and Metasploitable2 to practice and exploit common vulnerabilities such as SQL Injection, Command Injection, and Cross-Site Scripting (XSS). Tools used include Nmap, BurpSuite, and SQLmap.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
💎 Isomorphic html sanitizer by DOMPurify + sanitize-html
🛡 Automatically configure your app to follow OWASP security patterns and principles by using HTTP Headers and Middleware
Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:
Use DOMPurify on server and client in the same way
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Add a description, image, and links to the xss topic page so that developers can more easily learn about it.
To associate your repository with the xss topic, visit your repo's landing page and select "manage topics."