Skip to content
/ XSS-crosssite_injection-blocker Public

Chrome Extension to block XSS payloads in form of GET and POST requests.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SameerPr/XSS-crosssite_injection-blocker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
background.js
background.js
 
 
manifest.json
manifest.json
 
 

Repository files navigation

XSS Crosssite injection blocker

A Google chrome Extension to detect XSS cross site scripting injection based on regex patterns and block the requests.
This extension captures both GET & POST requests, checks for the possible combinations of threat vectors in the form of various HTML tags and blocks the page if data contains any threat vector.

##Usage:

  • Type chrome://extensions in a tab to bring up the extensions page.
  • check Developer mode to enable loading unpacked extensions. This will allow you to load your extension from a folder.
  • Finally, click Load unpacked extension or simply drag the Extension folder onto the page to load up the extension.
  • Test this extension on any webpage by sending GET and POST request with XSS payloads.

This is not 100% sure to block all possible threat vectors but it can work on most of the cases.
More threat vectors can be found on Owasp site.

About

Chrome Extension to block XSS payloads in form of GET and POST requests.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages