Skip to content
/ Flask_XSS Public

An intentionally vulnerable flask app designed to explore XSS vulnerabilities

5 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

terrabitz/Flask_XSS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

30 Commits
app
app
 
 
migrations
migrations
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
manage.py
manage.py
 
 
requirements.txt
requirements.txt
 
 
setup.py
setup.py
 
 

Repository files navigation

Flask XSS

This is an intentionally vulnerable webapp designed to explore various XSS attacks against web apps. It was created as a companion to the "Web Application Hacker's Handbook" chapter 12.

Features

  • GET parameter XSS
  • Cookie-base XSS
  • Stored XSS
  • Hackable 'admin' user
  • Toggleable browser XSS protection

Installation

To install, just run the following:

git clone https://github.com/terrabitz/Flask_XSS
cd flask_xss
pip install -r requirements.txt
python manage.py db init 
python manage.py add_admin
python manage.py runserver

The development server should then be started on localhost:5000

About

An intentionally vulnerable flask app designed to explore XSS vulnerabilities

Topics

python flask website hacking xss vulnerable

Resources

Readme
Activity

Stars

5 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages