Collecting XSS Subreddit Payloads

Having a good collection of Cross-Site Scripting (XSS) payloads is useful when you want to thoroughly test a web site’s ability to defend itself from being exploited. In most cases you can just run any one or more open source and/or commercial scanning tools to test your web site.

What is a Cross-Site Scripting (XSS) attack: Definition & Examples

Git All The Payloads! A Collection Of Web Attack Payloads

Collecting XSS Subreddit Payloads

GitHub - terjanq/Tiny-XSS-Payloads: A collection of tiny XSS Payloads that can be used in different contexts.

XSS cookie stealing - refabr1k's Pentest Notebook

Phillip Maddux posted on LinkedIn

What is a Cross-Site Scripting (XSS) attack: Definition & Examples

Neatly bypassing Content Security Policy. Why 'unsafe-inline' is almost always a full-fledged XSS : r/netsec

GitHub - trimstray/the-book-of-secret-knowledge: A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

Phillip Maddux

Getting Started with Payload CMS & Vue JS - DEV Community

r/SpaceX-API, Space

Attacking the Attackers - AvalZ