Skip to content
/ Cross-site-Scripting Public

🐞 Understand how cross-site scripting occurs, how to detect and exploit XSS vulnerabilities, giving you control of other visitor's browsers.

tryhackme.com/room/xss

License

MIT license
10 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ShubhamJagtap2000/Cross-site-Scripting

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

209 Commits
.github
.github
 
 
01 Introduction
01 Introduction
 
 
02 Deploy The Machine
02 Deploy The Machine
 
 
03 XSS Payloads
03 XSS Payloads
 
 
04 Stored XSS
04 Stored XSS
 
 
05 Reflected XSS
05 Reflected XSS
 
 
06 DOM-Based XSS
06 DOM-Based XSS
 
 
07 Blind XSS
07 Blind XSS
 
 
08 XSS for IP and Port Scanning
08 XSS for IP and Port Scanning
 
 
09 KeyLogger with XSS
09 KeyLogger with XSS
 
 
10 Filter Evasion
10 Filter Evasion
 
 
11 Perfecting Your Payload
11 Perfecting Your Payload
 
 
12 Blind XSS Practical
12 Blind XSS Practical
 
 
13 Protection Methods
13 Protection Methods
 
 
14 Other Exploits
14 Other Exploits
 
 
15 Further Learning
15 Further Learning
 
 
16 XSS Polyglots
16 XSS Polyglots
 
 
17 QnA
17 QnA
 
 
18 More on DOM
18 More on DOM
 
 
19 Miscellaneous
19 Miscellaneous
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package.json
package.json
 
 

Repository files navigation

Cross-site-Scripting (XSS) Walkthrough

Purpose of this repository

  1. Understand how cross-site scripting occurs and how to exploit it.
  2. Learn how to detect and exploit XSS vulnerabilities, giving you control of other visitor's browsers.
  3. This repo is open for contributions.

Screenshot (869)

Learning Resources

TryHackMe XSS Hacktivity Room 1

TryHackMe XSS Hacktivity Room 2

Table of Content

1. Introduction to XSS
2. Deploy the Machine

Deploy XSS Playground

3. XSS Payloads

Payload List

4. Stored XSS

Sample Payloads
Stored XSS Approach
Used Payloads
Scripts

5. Reflected XSS

Reflected XSS Approach
Sample Payloads

6. DOM XSS

DOM XSS Approach
Sample Payloads

7. Blind XSS
8. XSS For IP and Port Scanning

Used Scripts

9. Key-Logger With XSS
10. Filter Evasion

Scripts Used

11. Perfecting Your Payload

Level 1
Level 2
Level 3
Level 4
Level 5
Level 6
Payload List

12. Blilnd XSS Practical

Used Payloads

13. Protection Methods

Escaping
Validating Input
Sanitizing

14. Other Exploits

BeEF Tool

15. Further Learning

Important Links
XSS Reports
TryHackMe Rooms

16. XSS Polyglots
17. QnAs

Please ⭐ this repo if you really find it informative and learnable!

About

🐞 Understand how cross-site scripting occurs, how to detect and exploit XSS vulnerabilities, giving you control of other visitor's browsers.

tryhackme.com/room/xss

Topics

xss cybersecurity penetration-testing vulnerabilities bugbounty exploitation hacktoberfest ethical-hacking owasp-top-10 cross-site-scripting hactoberfest-accepted hacktoberfest2022

Resources

Readme

License

MIT license

Code of conduct

Code of conduct
Activity

Stars

10 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases 3

v1.0.2 Latest
Sep 7, 2023
+ 2 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages