TriviaSecurity XSS Security Playground

  1. Form One -- No security. Everything goes.
  2. Form Two -- Personalized CSS. no html symbols allowed.
  3. Form Three -- Html escaped. Image,avatar,etc url form.
  4. Form Four -- Nothing is escaped.. but some keywords are stripped.
  5. Form Five -- Poor addslashes security.
Amado XSS Kit
Generates a url from a number of variables. Only supports GET variable manipulation.
Current encoding/obfuscation features: