Example Usage
using Ganss.Xss;
var sanitizer = new HtmlSanitizer();
var html = @"<script>alert('xss')</script><div onload=""alert('xss')"""
+ @"style=""background-color: rgba(0, 0, 0, 1)"">Test<img src=""test.png"""
+ @"style=""background-image: url(javascript:alert('xss')); margin: 10px""></div>";
var sanitized = sanitizer.Sanitize(html, "https://www.example.com");
var expected = @"<div style=""background-color: rgba(0, 0, 0, 1)"">"
+ @"Test<img src=""https://www.example.com/test.png"" style=""margin: 10px""></div>";
Assert.Equal(expected, sanitized);
See also
JWT_Tool
Open Source
Toolkit for testing, tampering, and forging JSON Web Tokens. Tests common JWT vulnerabilities includ…
Pentest-Swarm-AI
Open Source
Autonomous penetration testing using a swarm of AI agents. Orchestrates recon, classification, explo…
Burp Suite
Freemium
Kali
Leading platform for web application security testing. The Community Edition includes an interceptin…
Burp Suite Extensions (BApp Store)
Freemium
Marketplace of extensions for Burp Suite covering active/passive scanning, custom insertion points, …
Penetration_Testing_POC
Open Source
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-ge…
All-In-One-CyberSecurity-Resources
Free
List of CyberSecurity Resources and some different Sub-Domains of CyberSecurity…