break-filter-js-from-html
CommunityBypass XSS filters with confidence.
AuthorZurybr
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This skill helps security professionals and bug bounty hunters bypass HTML sanitization filters to execute JavaScript, enabling them to test for Cross-Site Scripting (XSS) vulnerabilities.
Core Features & Use Cases
- Filter Analysis: Systematically identify how sanitization libraries block or preserve HTML elements and attributes.
- Bypass Categories: Provides structured approaches for exploiting parser differentials, alternative JavaScript vectors, event handler variations, URL-based execution, and CSS-based attacks.
- Testing Methodology: Guides users in building testing harnesses and performing staged verification to confirm bypasses.
- Use Case: When performing a penetration test on a web application that sanitizes user-submitted HTML, use this skill to craft payloads that bypass the filter and demonstrate an XSS vulnerability.
Quick Start
Use the break-filter-js-from-html skill to analyze the provided HTML snippet for potential XSS filter bypasses.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: break-filter-js-from-html Download link: https://github.com/Zurybr/lefarma-skills/archive/main.zip#break-filter-js-from-html Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.