PHP / cross-site scripting

Hint: Click ↑ Pushed to see the most recently updated apps and libraries or click Growing to repos being actively starred .
anti-xss 🌿
335 (+0) ⭐

️ AntiXSS | Protection against Cross-site scripting (XSS) via PHP

ezXSS 🌿
873 (+0) ⭐

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

XSSmh πŸ‚
17 (+0) ⭐

XSSmh - A configurable Cross-Site Scripting testbed

0l4bs 🌿
56 (+0) ⭐

Cross-site scripting labs for web application security enthusiasts

xss πŸ‚
44 (+0) ⭐

Examples from The Hitchhiker's Guide To Cross-Site Scripting (XSS)

xss-me πŸ‚
14 (+0) ⭐

A simple web application to learn about Cross-Site Scripting (XSS)

15 (+0) ⭐

XSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.

xss πŸ‚
13 (+0) ⭐

PHP filter class to prevent cross-site-scripting (XSS) vulnerabilities. Removes dangerous tags and protocols from HTML. The main difference between this class and strip_tags() or filter_var() is that you can preserve certain tags AND sanitize their attributes. Port of Drupal's XSS filter

16 (+0) ⭐

The project’s primary goals consist of: A robust and effective web based online banking system. Extending functionality without compromising the security. Personal banking services that gives you complete control over all your banking demands online. Simple and easy user interface to work with. Online Banking features: Registration for online banking by Admin. Adding Beneficiary account by customer. Transferring amount to the beneficiary added by customer. Staff must approve for beneficiary activation before it can be used for transferring funds. Customer gets to know his last login date and time each time he logs in. Customer can check last 10 transactions made with their account. Customer can check their account statement within a date range. Customer can request for ATM and Cheque Book. Staff will approve requests for ATM card and cheque book. Admin can add/edit/delete customer as well as staff. All three of them(customer, staff & admin) can change their password. Staff and Admin Login pages are hidden from customer for security purpose. Security: Each and every input is passed through mysql_real_escape_string() to remove special characters from the string so that user can’t submit arbitrary input. It protects from attacks like Sql Injection and Cross Site Scripting(XSS). Passwords are encrypted with SHA- 1 hashing algorithm and then stored in database. Passwords are stored as encrypted hashes with an additional random salt for added security. Note: If we talk about security,above mentioned points would provide no security at all but it will work for beginners. Being into web app pentesting,I very well know this project will not be considered secure. It needs atleast a more effective filtering mechanism, better hashing algorithm, a better salting procedure for storing passwords and some other things too. Database: The database contains customer, staff & admin tables. Each customer has its own virtual passbook linked with its account number. Staff, customer and, admin have their details and password in their respective tables with all the details. A separate table for beneficiary is included in the database. A table for cheque book and ATM requests is included. This project is divided into three hierarchical parts: The index page for the customer login. A hidden staff login page. A hidden admin login page. Usage: 1.Install XAMPP or something similar. 2.Copy all the files to c:/xampp/htdocs/banking/ 3.Create a db named as 'bnak_db' and import the bank_db.sql from phpMyAdmin. 4.change the password in _inc/dbconn.php file accordingly. 5.visit localhost/banking (customer index page) 6.visit localhost/banking/adminlogin.php (admin login) 7.visit the localhost/banking/staff_login.php (staff login)

103854 PHP libraries
(21846 libraries)
(100935 libraries)
(54880 libraries)
(18667 libraries)
(30059 libraries)
(48676 libraries)
(24850 libraries)
(44655 libraries)
(14610 libraries)
(10611 libraries)
(26348 libraries)
(16709 libraries)
(170023 libraries)
(16492 libraries)
(17158 libraries)
(81779 libraries)
(81215 libraries)
(61274 libraries)
(13466 libraries)
(104371 libraries)
(85256 libraries)
(50437 libraries)
(49353 libraries)
(11136 libraries)
(70084 libraries)
(103851 libraries)
(137780 libraries)
(155873 libraries)
(7176 libraries)
(4843 libraries)
(11728 libraries)
(42096 libraries)
(2862 libraries)